4 matches found
CVE-2024-35666 WordPress Themesflat Addons For Elementor plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themesflat Themesflat Addons For Elementor allows Stored XSS.This issue affects Themesflat Addons For Elementor: from n/a through 2.1.2...
CVE-2024-35666
CVE-2024-35666 affects the WordPress plugin Themesflat Addons For Elementor up to version 2.1.2. The issue is a Stored XSS via widget tags caused by insufficient input sanitization and output escaping. Exploitation context: authenticated attackers with contributor-level access can inject scripts ...
CVE-2024-35666 WordPress Themesflat Addons For Elementor plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themesflat Themesflat Addons For Elementor allows Stored XSS.This issue affects Themesflat Addons For Elementor: from n/a through 2.1.2...
WordPress Themesflat Addons For Elementor Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Themesflat Addons For Elementor Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35666 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 1d5882ba1544 Credits Khalid Yusuf Required...