WordPress Essential Addons for Elementor Pro plugin <= 5.8.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Lightbox and Modal Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Lightbox and Modal Widget vulnerability discovered by wesley wcraft in WordPress Plugin Essential Addons for Elementor Pro versions = 5.8.15...

PT-2024-36719 · WordPress · Essential Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Essential Addons for Elementor Pro plugin for WordPress versions up to, and including, 5.8.15 Description: The issue is related to Stored Cross-Site Scripting via the eael lightbox open btn icon parameter within the Lightbox & Modal widge...