2 matches found
CVE-2024-3675
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Flip Carousel, Flip Box, Post Grid, and Taxonomy List widgets in all versions up to, and including, 1.3.971 due to insufficient input sanitization and output escaping on use...
WordPress Royal Elementor Addons Plugin <= 1.3.971 is vulnerable to Cross Site Scripting (XSS)
Software Royal Elementor Addons Type Plugin Vulnerable versions = 1.3.971 Fixed in 1.3.972 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3675 Patch priority Low CVSS severity Low 6.5 Developer WProyal PSID 455900c3fc8f Credits stealthcopter Require...