4 matches found
CVE-2024-52425
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vladislav Urchenko Drozd – Addons for Elementor drozd-addons-for-elementor allows Stored XSS.This issue affects Drozd – Addons for Elementor: from n/a through = 1.1.1...
CVE-2024-52425
creationtimestamp| type| source ---|---|--- 2024-11-18 15:51:25+00:00| seen| https://infosec.exchange/users/cve/statuses/113504753049004965...
CVE-2024-52425
The CVE-2024-52425 entry concerns a Stored XSS in Drozd – Addons for Elementor, caused by improper input neutralization during web page generation. Affected product/version: Drozd – Addons for Elementor
WordPress Drozd – Addons for Elementor Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)
Software Drozd – Addons for Elementor Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52425 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0557358ff3fc Credits Gab Required privilege...