Lucene search
K

6 matches found

OSV
OSV
added 2024/07/24 1:15 p.m.2 views

CVE-2024-5818

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored DOM-based Cross-Site Scripting via the plugin's Magazine Grid/Slider widget in all versions up to, and including, 1.3.980 due to insufficient input sanitization and output escaping on user supplied attributes...

5.4CVSS5.9AI score0.00263EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/24 12:43 p.m.12 views

CVE-2024-5818 Royal Elementor Addons and Templates <= 1.3.980 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Magazine Grid/Slider Widget

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored DOM-based Cross-Site Scripting via the plugin's Magazine Grid/Slider widget in all versions up to, and including, 1.3.980 due to insufficient input sanitization and output escaping on user supplied attributes...

6.4CVSS5.9AI score0.00263EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/24 12:43 p.m.33 views

CVE-2024-5818 Royal Elementor Addons and Templates <= 1.3.980 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Magazine Grid/Slider Widget

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored DOM-based Cross-Site Scripting via the plugin's Magazine Grid/Slider widget in all versions up to, and including, 1.3.980 due to insufficient input sanitization and output escaping on user supplied attributes...

6.4CVSS0.00263EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/07/24 2:44 a.m.6 views

WordPress Royal Elementor Addons and Templates plugin <= 1.3.980 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Magazine Grid/Slider Widget vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting via Magazine Grid/Slider Widget vulnerability discovered by Webbernaut in WordPress Plugin Royal Elementor Addons versions = 1.3.980...

6.4CVSS5.8AI score0.00263EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/07/24 12:0 a.m.3 views

WordPress plugin Royal Elementor Addons and Templates 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.4CVSS6AI score0.00263EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/24 12:0 a.m.4 views

PT-2024-37180 · WordPress · The Royal Elementor Addons/Templates

Name of the Vulnerable Software and Affected Versions: The Royal Elementor Addons and Templates plugin for WordPress versions up to, and including, 1.3.980 Description: The issue is related to Stored DOM-based Cross-Site Scripting via the plugin's Magazine Grid/Slider widget due to insufficient...

6.4CVSS6AI score0.00263EPSS
Exploits0References7
Rows per page
Query Builder