Lucene search
K

96 matches found

Patchstack
Patchstack
added 2025/05/30 2:21 p.m.12 views

WordPress The Plus Addons for Elementor Page Builder Lite plugin <= 6.2.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin The Plus Addons for Elementor Page Builder Lite versions = 6.2.7...

6.5CVSS5.6AI score0.00169EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:12 a.m.3 views

CVE-2024-56246

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows DOM-Based XSS.This issue affects Nexter Blocks: from n/a through = 4.0.4...

6.5CVSS7.2AI score0.00253EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:8 a.m.4 views

CVE-2024-56294

Missing Authorization vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Nexter Blocks: from n/a through = 4.0.7...

6.4CVSS7.2AI score0.00367EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:14 a.m.6 views

CVE-2024-53811

Unrestricted Upload of File with Dangerous Type vulnerability in POSIMYTH WDesignkit wdesignkit allows Upload a Web Shell to a Web Server.This issue affects WDesignkit: from n/a through = 1.0.40...

6.6CVSS7.2AI score0.00311EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:43 a.m.8 views

CVE-2023-45658

Missing Authorization vulnerability in POSIMYTH Nexter.This issue affects Nexter: from n/a through 2.0.3...

7.6CVSS6.9AI score0.0035EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/31 7:56 p.m.8 views

WordPress WDesignKit plugin <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Ankit Patel in WordPress Plugin WDesignkit versions = 1.2.3...

6.4CVSS6.3AI score0.00232EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 9:49 a.m.8 views

CVE-2024-30435

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor.This issue affects Nexter Blocks: from n/a through = 3.2.5...

7.1CVSS7.2AI score0.00423EPSS
Exploits0References1
NVD
NVD
added 2025/01/07 11:15 a.m.12 views

CVE-2024-56294

Missing Authorization vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Nexter Blocks: from n/a through = 4.0.7...

6.4CVSS0.00367EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.4 views

PT-2025-3257 · Posimyth · Posimyth Nexter Blocks

Name of the Vulnerable Software and Affected Versions: POSIMYTH Nexter Blocks versions 4.0.7 and earlier Description: The issue is related to a Missing Authorization vulnerability in POSIMYTH Nexter Blocks, which allows exploiting incorrectly configured access control security levels...

6.4CVSS9.3AI score0.00367EPSS
Exploits0References3
NVD
NVD
added 2025/01/02 12:15 p.m.21 views

CVE-2024-56246

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows DOM-Based XSS.This issue affects Nexter Blocks: from n/a through = 4.0.4...

6.5CVSS0.00253EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 12:1 p.m.46 views

CVE-2024-56246

CVE-2024-56246 concerns Nexter Blocks (POSIMYTH) for WordPress. Description from Red Hat/NVD indicates an improper neutralization of input during web page generation, enabling DOM-based XSS in Nexter Blocks

6.5CVSS7.2AI score0.00253EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/02 12:0 a.m.4 views

PT-2025-3212 · Unknown · Posimyth Nexter Blocks

Name of the Vulnerable Software and Affected Versions: POSIMYTH Nexter Blocks versions through 4.0.4 Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows DOM-Based XSS. This means that an attacker...

6.5CVSS9.3AI score0.00253EPSS
Exploits0References5
NVD
NVD
added 2024/12/06 2:15 p.m.20 views

CVE-2024-53811

Unrestricted Upload of File with Dangerous Type vulnerability in POSIMYTH WDesignkit wdesignkit allows Upload a Web Shell to a Web Server.This issue affects WDesignkit: from n/a through = 1.0.40...

6.6CVSS0.00311EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/10/24 12:0 a.m.7 views

WordPress Nexter Blocks Plugin <= 3.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Nexter Blocks Type Plugin Vulnerable versions = 3.3.3 Fixed in 4.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50452 Patch priority Low CVSS severity Low 6.5 Developer POSIMYTH Innovations PSID 5124e10b8774 Credits João Pedro S Alcântara Kinorth...

9.4AI score0.00215EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/10/10 12:0 a.m.18 views

WordPress The Plus Addons for Elementor Page Builder Lite Plugin <= 5.6.11 is vulnerable to Sensitive Data Exposure

Software The Plus Addons for Elementor Page Builder Lite Type Plugin Vulnerable versions = 5.6.11 Fixed in 5.6.12 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-8913 Patch priority Low CVSS severity Low 6.5 Developer POSIMYTH Innovations PSID...

4.3CVSS6.5AI score0.00368EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/09/17 11:15 p.m.33 views

CVE-2024-43977

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite the-plus-addons-for-elementor-page-builder allows Stored XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a...

5.9CVSS0.00279EPSS
Exploits0References1
CVE
CVE
added 2024/09/17 10:38 p.m.65 views

CVE-2024-43977

The CVE-2024-43977 entry describes a Stored XSS in POSIMYTH The Plus Addons for Elementor Page Builder Lite (WordPress). Affected: The Plus Addons for Elementor Page Builder Lite versions n/a through 5.6.2. Cause: Improper neutralization of input during web page generation. Impact: Stored XSS vul...

6.5CVSS5.9AI score0.00279EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/26 12:0 a.m.14 views

WordPress The Plus Addons for Elementor Page Builder Lite Plugin <= 5.6.2 is vulnerable to Broken Access Control

Software The Plus Addons for Elementor Page Builder Lite Type Plugin Vulnerable versions = 5.6.2 Fixed in 5.6.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43932 Patch priority Medium CVSS severity Medium 6.5 Developer POSIMYTH Innovations PSID...

8.8CVSS6.3AI score0.00561EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/27 12:0 a.m.10 views

WordPress The Plus Addons for Elementor Page Builder Lite Plugin <= 5.6.0 is vulnerable to Cross Site Scripting (XSS)

Software The Plus Addons for Elementor Page Builder Lite Type Plugin Vulnerable versions = 5.6.0 Fixed in 5.6.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4983 Patch priority Low CVSS severity Low 6.5 Developer POSIMYTH Innovations PSID...

6.4CVSS5.8AI score0.00368EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/06/19 12:15 p.m.27 views

CVE-2023-45658

Missing Authorization vulnerability in POSIMYTH Nexter.This issue affects Nexter: from n/a through 2.0.3...

7.6CVSS0.0035EPSS
Exploits0References1
Rows per page
Query Builder