Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2024/06/04 1:53 p.m.20 views

CVE-2024-35666 WordPress Themesflat Addons For Elementor plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themesflat Themesflat Addons For Elementor allows Stored XSS.This issue affects Themesflat Addons For Elementor: from n/a through 2.1.2...

6.5CVSS6.8AI score0.00237EPSS
Exploits0References1
CVE
CVE
added 2024/06/04 1:53 p.m.45 views

CVE-2024-35666

CVE-2024-35666 affects the WordPress plugin Themesflat Addons For Elementor up to version 2.1.2. The issue is a Stored XSS via widget tags caused by insufficient input sanitization and output escaping. Exploitation context: authenticated attackers with contributor-level access can inject scripts ...

6.5CVSS5.9AI score0.00237EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/04 1:53 p.m.33 views

CVE-2024-35666 WordPress Themesflat Addons For Elementor plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themesflat Themesflat Addons For Elementor allows Stored XSS.This issue affects Themesflat Addons For Elementor: from n/a through 2.1.2...

6.5CVSS5.8AI score0.00237EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/03 12:0 a.m.14 views

WordPress Themesflat Addons For Elementor Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Themesflat Addons For Elementor Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35666 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 1d5882ba1544 Credits Khalid Yusuf Required...

6.5CVSS6.6AI score0.00237EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder