CVE-2020-13864
Elementor Page Builder for WordPress (pre-2.9.9) is affected by a stored XSS: an author can insert a crafted payload in custom links that persists in posts. Multiple sources (NVD/NVD-derived CVE entry; OpenVAS/WPVulnDB entries) confirm the vulnerability class and variant; no exploit specifics bey...