8 matches found
EUVD-2019-6756
Malware in sbrugna...
CVE-2019-15839
The sina-extension-for-elementor plugin before 2.2.1 for WordPress has local file inclusion...
CVE-2024-5260
The Sina Extension for Elementor Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘readmoretext’ parameter in all versions up to, and including, 3.5.5 due to insufficient...
CVE-2024-35703
The CVE-2024-35703 entry concerns WordPress plugin Sina Extension for Elementor (≤ 3.5.3). The vulnerability is an Improper Neutralization of Input During Web Page Generation (Stored XSS) in the Sina Extension for Elementor, allowing stored cross-site scripting. Affected component: the plugin’s i...
PT-2024-26652 · Unknown · Sina Extension For Elementor
Name of the Vulnerable Software and Affected Versions: Sina Extension for Elementor versions 3.5.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS or Stored XSS. This allows for the storage of...
WordPress plugin Sina Extension for Elementor 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...
CVE-2024-3988
The Sina Extension for Elementor Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Sina Fancy Text Widget in all versions up to, and including, 3.5.2 due to...
CVE-2024-3988
The Sina Extension for Elementor (WordPress plugin) is vulnerable under CVE-2024-3988 to Stored Cross-Site Scripting via the Sina Fancy Text Widget in versions up to 3.5.2. Exploitation requires authenticated access at contributor level+, and scripts can execute when users load injected pages. Th...