4 matches found
CVE-2025-1455
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Woo Grid widget in all versions up to, and including, 1.7.1012 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2025-1455
creationtimestamp| type| source ---|---|--- 2025-04-12 08:51:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11552 2025-04-12 12:12:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmmiyo4ea32q 2025-04-12 12:30:53+00:00| seen| https://t.me/cvedetector/22800...
CVE-2025-1455
CVE-2025-1455 affects the Royal Elementor Addons and Templates plugin for WordPress. The issue is a Stored Cross-Site Scripting vulnerability in the Woo Grid widget caused by insufficient input sanitization and output escaping. It requires authenticated access (Contributor level or higher) and al...
CVE-2025-1455 Royal Elementor Addons and Templates <= 1.7.1012 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Woo Grid widget in all versions up to, and including, 1.7.1012 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...