CVE-2024-2129
CVE-2024-2129: WPBITS Addons For Elementor Page Builder for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s heading widget in all versions up to and including 1.3.4.2, due to insufficient input sanitization and output escaping on user-supplied attributes. Attack scenario: ...