Lucene search
K

3 matches found

Vulnrichment
Vulnrichment
added 2024/06/27 4:4 a.m.18 views

CVE-2024-4569 Elementor Addon Elements <= 1.13.5 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level...

6.4CVSS5.8AI score0.00361EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/06/27 4:4 a.m.36 views

CVE-2024-4569 Elementor Addon Elements <= 1.13.5 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level...

6.4CVSS0.00361EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/06/27 12:0 a.m.12 views

WordPress Elementor Addon Elements Plugin <= 1.13.5 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.13.5 Fixed in 1.13.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4569 Patch priority Low CVSS severity Low 6.5 Developer WPVibes PSID 7f9fecc66936 Credits Ngô Thiên An ancorn...

6.4CVSS5.8AI score0.00361EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder