Lucene search
K

3 matches found

CVE
CVE
added 2024/06/13 5:34 a.m.58 views

CVE-2024-5787

CVE-2024-5787 concerns PowerPack Addons for Elementor (PowerPack Lite, PowerPack Addons for Elementor) for WordPress. The vulnerability is a Stored Cross-Site Scripting (Stored XSS) in the Link Effects widget via the url attribute, affecting all versions up to and including 2.7.20. The issue aris...

6.4CVSS5.5AI score0.00401EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2024/06/13 5:34 a.m.32 views

CVE-2024-5787 PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Link Effects Widget

The PowerPack Addons for Elementor Free Widgets, Extensions and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'url' attribute within the plugin's Link Effects widget in all versions up to, and including, 2.7.20 due to insufficient input sanitization and outpu...

6.4CVSS0.00401EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/06/13 5:34 a.m.20 views

CVE-2024-5787 PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Link Effects Widget

The PowerPack Addons for Elementor Free Widgets, Extensions and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'url' attribute within the plugin's Link Effects widget in all versions up to, and including, 2.7.20 due to insufficient input sanitization and outpu...

6.4CVSS5.8AI score0.00401EPSS
Exploits0References4
Rows per page
Query Builder