4 matches found
CVE-2024-12205
creationtimestamp| type| source ---|---|--- 2025-01-08 04:30:41+00:00| seen| https://infosec.exchange/users/cve/statuses/113790854151442414 2025-01-08 04:38:42+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/641 2025-01-08 05:15:29+00:00| seen|...
CVE-2024-12205 Themesflat Addons For Elementor <= 2.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TF E Slider Widget in all versions up to, and including, 2.2.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2024-12205 Themesflat Addons For Elementor <= 2.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TF E Slider Widget in all versions up to, and including, 2.2.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2024-12205
CVE-2024-12205 affects Themesflat Addons For Elementor for WordPress. This stores cross-site scripting via TF E Slider Widget in versions up to 2.2.4 due to insufficient input sanitization and output escaping. Exploitation requires authenticated access (Contributor level or higher) to inject scri...