2 matches found
CVE-2024-2250
CVE-2024-2250 — The 140+ Widgets | Best Addons For Elementor – FREE (WordPress) is vulnerable to Stored Cross-Site Scripting via widget attributes in all versions up to 1.4.2 due to insufficient input sanitization and output escaping. This permits authenticated attackers with contributor-level or...
WordPress Xpro Elementor Addons Plugin <= 1.4.2 is vulnerable to Cross Site Scripting (XSS)
Software Xpro Elementor Addons Type Plugin Vulnerable versions = 1.4.2 Fixed in 1.4.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2250 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7f86252c86a0 Credits Francesco Carlucci...