2 matches found
CVE-2024-1397
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's blocks in all versions up to, and including, 2.4.6 due to insufficient input sanitization and output escaping on the 'titleTag' user supplied attributes. This makes it...
CVE-2024-1397
CVE-2024-1397 concerns the HT Mega – Absolute Addons For Elementor WordPress plugin. The vulnerability is a Stored Cross-Site Scripting (XSS) in the plugin blocks via the titleTag attributes supplied by users, caused by insufficient input sanitization and output escaping. Affected versions are up...