Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/05/23 8:42 a.m.7 views

CVE-2024-35167

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EnvoThemes Envo's Elementor Templates & Widgets for WooCommerce allows Stored XSS.This issue affects Envo's Elementor Templates & Widgets for WooCommerce: from n/a through 1.4.8...

6.5CVSS5.2AI score0.00423EPSS
Exploits0References1
nvd
nvd
added 2024/05/14 3:39 p.m.15 views

CVE-2024-35167

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EnvoThemes Envo's Elementor Templates & Widgets for WooCommerce allows Stored XSS.This issue affects Envo's Elementor Templates & Widgets for WooCommerce: from n/a through 1.4.8...

6.5CVSS6.8AI score0.00423EPSS
Exploits0References1
cvelist
cvelist
added 2024/05/13 10:2 a.m.20 views

CVE-2024-35167 WordPress Envo's Elementor Templates & Widgets for WooCommerce plugin <=1.4.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EnvoThemes Envo's Elementor Templates & Widgets for WooCommerce allows Stored XSS.This issue affects Envo's Elementor Templates & Widgets for WooCommerce: from n/a through 1.4.8...

6.5CVSS7.3AI score0.00423EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/05/13 10:2 a.m.13 views

CVE-2024-35167 WordPress Envo's Elementor Templates & Widgets for WooCommerce plugin <=1.4.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EnvoThemes Envo's Elementor Templates & Widgets for WooCommerce allows Stored XSS.This issue affects Envo's Elementor Templates & Widgets for WooCommerce: from n/a through 1.4.8...

6.5CVSS6.8AI score0.00423EPSS
Exploits0References1
cve
cve
added 2024/05/13 10:2 a.m.44 views

CVE-2024-35167

CVE-2024-35167 is a Stored XSS in Envo’s Elementor Templates & Widgets for WooCommerce (Envo Elemento r for WooCommerce). The issue arises from improper input neutralization during web page generation, affecting versions from non-applicable to 1.4.8. Public references in connected documents confi...

6.5CVSS5.2AI score0.00423EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/05/10 12:0 a.m.11 views

WordPress Envo's Elementor Templates & Widgets for WooCommerce Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS)

Software Envo's Elementor Templates & Widgets for WooCommerce Type Plugin Vulnerable versions = 1.4.8 Fixed in 1.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35167 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d43205502e94 Credits...

6.5CVSS6.6AI score0.00423EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder