CVE-2022-3794

The Jeg Elementor Kit plugin for WordPress is vulnerable to authorization bypass in various AJAX actions in versions up to, and including, 2.5.6. Authenticated users can use an easily available nonce value to create header templates and make additional changes to the site, as the plugin does not...

CVE-2022-3794

The Jeg Elementor Kit plugin for WordPress is vulnerable to authorization bypass in various AJAX actions in versions up to, and including, 2.5.6. Authenticated users can use an easily available nonce value to create header templates and make additional changes to the site, as the plugin does not...

WordPress plugin Jeg Elementor Kit 安全漏洞

WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. iframe is an inline frame used to embed another document into the current HTML document.Elementor is a website builder that allows WordPress users to crea...

PT-2021-14447 · Typo3 · Bootstrap Package

Name of the Vulnerable Software and Affected Versions: Bootstrap Package versions 7.1.2, 8.0.8, 9.1.4, 10.0.10 or 11.0.3 Description: The Bootstrap Package for TYPO3 has a cross-site scripting issue when rendering content in the website frontend. A valid backend user account is required to exploi...