4 matches found
PT-2025-26290 · WordPress · Euro Fxref Currency Converter
Name of the Vulnerable Software and Affected Versions: Euro FxRef Currency Converter plugin for WordPress versions up to, and including, 2.0.2 Description: The issue is related to Stored Cross-Site Scripting via the plugin's currency shortcode due to insufficient input sanitization and output...
PT-2024-19471 · WordPress · Testimonial Carousel For Elementor
Name of the Vulnerable Software and Affected Versions: Testimonial Carousel For Elementor plugin for WordPress versions up to, and including, 10.2.1 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's carousel widgets,...
PT-2024-20222 · WordPress · Premium Addons Pro
Name of the Vulnerable Software and Affected Versions: Premium Addons PRO plugin for WordPress versions up to, and including, 4.10.23 Description: The issue is related to Stored Cross-Site Scripting via the plugin's widgets due to insufficient input sanitization and output escaping on user-suppli...
PT-2024-18005 · WordPress · Elementor Addon Elements
Name of the Vulnerable Software and Affected Versions: Elementor Addon Elements plugin for WordPress versions up to, and including, 1.12.12 Description: The issue is related to Stored Cross-Site Scripting via the icon align attribute of the Content Switcher widget due to insufficient input...