2 matches found
CVE-2024-1393
Elementor Addon Elements for WordPress has Stored XSS via the Content Switcher widget (icon_align) in all versions up to 1.12.12. Root cause: insufficient input sanitization and output escaping. Affected: plugin versions
WordPress Elementor Addon Elements Plugin <= 1.12.12 is vulnerable to Cross Site Scripting (XSS)
Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.12.12 Fixed in 1.13 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1393 Patch priority Low CVSS severity Low 6.5 Developer WPVibes PSID ccd1d4164264 Credits Nikolas Required...