CVE-2021-24256
The CVE-2021-24256 entry concerns the WordPress plugin “Elementor – Header, Footer & Blocks Template” (before 1.5.8). Connected documents provide concrete details: two widgets (Page Title and Site Title) that can store XSS via parameters such as heading_tag and size, allowing lower-privileged use...