2 matches found
CVE-2024-44027
CVE-2024-44027 describes a Stored XSS vulnerability in the Gum Elementor Addon for WordPress, affecting Gum Elementor Addon versions up to 1.3.6. The issue arises from improper input neutralization during web page generation, enabling cross-site scripting via the plugin. Patchstack notes that thi...
WordPress Gum Elementor Addon Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS)
Software Gum Elementor Addon Type Plugin Vulnerable versions = 1.3.6 Fixed in 1.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44027 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID deeeb1b651c5 Credits João Pedro S Alcântara Kinorth...