WordPress Contact Widgets For Elementor Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Contact Widgets For Elementor Type Plugin Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5b33610fc779 Credits Rafie Muhammad...

WordPress Contact Widgets For Elementor plugin <= 1.0.5 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Contact Widgets For Elementor plugin versions = 1.0.5. Solution Update the WordPress Contact Widgets For Elementor plugin to the latest available version at least 1.0.6...

WordPress Contact Widgets For Elementor plugin <= 1.0.5 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Contact Widgets For Elementor plugin versions = 1.0.5. Solution Update the WordPress Contact Widgets For Elementor plugin to the latest available version at least 1.0.6...

WordPress WP-Contact-Widgets 1.4.1 Cross Site Scripting Vulnerability

WordPress WP-Contact-Widgets plugin version 1.4.1 suffers from a stored cross site scripting vulnerability. Exploit Title: Stored XSS on wp-contact-widgets 1.4.1 wordpress plugin Exploit Author: Boumediene KADDOUR Publisher: R&D Unit Algerie Telecom Version: 1.4.1 Application website:...