2 matches found
CVE-2024-4203
The Premium Addons Pro for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maps widget in all versions up to, and including, 4.10.30 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2024-4203
The CVE-2024-4203 entry concerns the Premium Addons Pro for Elementor WordPress plugin. It enables Stored XSS via the maps widget in versions up to 4.10.30 due to insufficient input sanitization and output escaping on user-supplied attributes. Exploitation requires at least contributor-level acce...