4 matches found
CVE-2024-49292
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tim Strifler Exclusive Addons Elementor exclusive-addons-for-elementor allows Stored XSS.This issue affects Exclusive Addons Elementor: from n/a through = 2.7.1...
CVE-2024-49292
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tim Strifler Exclusive Addons Elementor exclusive-addons-for-elementor allows Stored XSS.This issue affects Exclusive Addons Elementor: from n/a through = 2.7.1...
CVE-2024-49292
CVE-2024-49292 is a stored XSS in Exclusive Addons for Elementor (plugin) up to version 2.7.1. Exploitable via input during web page generation; Patchstack reports a fix in 2.7.2. Recommend upgrading to 2.7.2 or later. Public sources also corroborate the vulnerability detail and patch, with CVSS ...
WordPress Exclusive Addons Elementor Plugin <= 2.7.1 is vulnerable to Cross Site Scripting (XSS)
Software Exclusive Addons Elementor Type Plugin Vulnerable versions = 2.7.1 Fixed in 2.7.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49292 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 98088c8c1037 Credits Robert DeVore Required...