Lucene search
K

4 matches found

NVD
NVD
added 2024/12/12 7:15 a.m.22 views

CVE-2024-10784

The Unlimited Elements For Elementor Free Widgets, Addons, Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Tile Gallery' widget in all versions up to, and including, 1.5.126 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS0.00345EPSS
Exploits0References2
CVE
CVE
added 2024/12/12 6:46 a.m.68 views

CVE-2024-10784

CVE-2024-10784 affects Unlimited Elements For Elementor (WordPress) with a Stored XSS in the Tile Gallery widget. Attack requires authentication at Contributor level or higher and can yield arbitrary script execution on pages viewed by users, via insufficient input sanitization and output escapin...

6.4CVSS5.7AI score0.00345EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/12/12 6:46 a.m.44 views

CVE-2024-10784 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.126 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Unlimited Elements For Elementor Free Widgets, Addons, Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Tile Gallery' widget in all versions up to, and including, 1.5.126 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS0.00345EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/12 6:46 a.m.20 views

CVE-2024-10784 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.126 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Unlimited Elements For Elementor Free Widgets, Addons, Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Tile Gallery' widget in all versions up to, and including, 1.5.126 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS5.8AI score0.00345EPSS
Exploits0References2
Rows per page
Query Builder