96 matches found
WordPress The Plus Addons for Elementor Page Builder Lite plugin <= 6.2.7 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin The Plus Addons for Elementor Page Builder Lite versions = 6.2.7...
CVE-2024-56246
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows DOM-Based XSS.This issue affects Nexter Blocks: from n/a through = 4.0.4...
CVE-2024-56294
Missing Authorization vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Nexter Blocks: from n/a through = 4.0.7...
CVE-2024-53811
Unrestricted Upload of File with Dangerous Type vulnerability in POSIMYTH WDesignkit wdesignkit allows Upload a Web Shell to a Web Server.This issue affects WDesignkit: from n/a through = 1.0.40...
CVE-2023-45658
Missing Authorization vulnerability in POSIMYTH Nexter.This issue affects Nexter: from n/a through 2.0.3...
WordPress WDesignKit plugin <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Ankit Patel in WordPress Plugin WDesignkit versions = 1.2.3...
CVE-2024-30435
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor.This issue affects Nexter Blocks: from n/a through = 3.2.5...
CVE-2024-56294
Missing Authorization vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Nexter Blocks: from n/a through = 4.0.7...
PT-2025-3257 · Posimyth · Posimyth Nexter Blocks
Name of the Vulnerable Software and Affected Versions: POSIMYTH Nexter Blocks versions 4.0.7 and earlier Description: The issue is related to a Missing Authorization vulnerability in POSIMYTH Nexter Blocks, which allows exploiting incorrectly configured access control security levels...
CVE-2024-56246
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor allows DOM-Based XSS.This issue affects Nexter Blocks: from n/a through = 4.0.4...
CVE-2024-56246
CVE-2024-56246 concerns Nexter Blocks (POSIMYTH) for WordPress. Description from Red Hat/NVD indicates an improper neutralization of input during web page generation, enabling DOM-based XSS in Nexter Blocks
PT-2025-3212 · Unknown · Posimyth Nexter Blocks
Name of the Vulnerable Software and Affected Versions: POSIMYTH Nexter Blocks versions through 4.0.4 Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows DOM-Based XSS. This means that an attacker...
CVE-2024-53811
Unrestricted Upload of File with Dangerous Type vulnerability in POSIMYTH WDesignkit wdesignkit allows Upload a Web Shell to a Web Server.This issue affects WDesignkit: from n/a through = 1.0.40...
WordPress Nexter Blocks Plugin <= 3.3.3 is vulnerable to Cross Site Scripting (XSS)
Software Nexter Blocks Type Plugin Vulnerable versions = 3.3.3 Fixed in 4.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50452 Patch priority Low CVSS severity Low 6.5 Developer POSIMYTH Innovations PSID 5124e10b8774 Credits João Pedro S Alcântara Kinorth...
WordPress The Plus Addons for Elementor Page Builder Lite Plugin <= 5.6.11 is vulnerable to Sensitive Data Exposure
Software The Plus Addons for Elementor Page Builder Lite Type Plugin Vulnerable versions = 5.6.11 Fixed in 5.6.12 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-8913 Patch priority Low CVSS severity Low 6.5 Developer POSIMYTH Innovations PSID...
CVE-2024-43977
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite the-plus-addons-for-elementor-page-builder allows Stored XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a...
CVE-2024-43977
The CVE-2024-43977 entry describes a Stored XSS in POSIMYTH The Plus Addons for Elementor Page Builder Lite (WordPress). Affected: The Plus Addons for Elementor Page Builder Lite versions n/a through 5.6.2. Cause: Improper neutralization of input during web page generation. Impact: Stored XSS vul...
WordPress The Plus Addons for Elementor Page Builder Lite Plugin <= 5.6.2 is vulnerable to Broken Access Control
Software The Plus Addons for Elementor Page Builder Lite Type Plugin Vulnerable versions = 5.6.2 Fixed in 5.6.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43932 Patch priority Medium CVSS severity Medium 6.5 Developer POSIMYTH Innovations PSID...
WordPress The Plus Addons for Elementor Page Builder Lite Plugin <= 5.6.0 is vulnerable to Cross Site Scripting (XSS)
Software The Plus Addons for Elementor Page Builder Lite Type Plugin Vulnerable versions = 5.6.0 Fixed in 5.6.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4983 Patch priority Low CVSS severity Low 6.5 Developer POSIMYTH Innovations PSID...
CVE-2023-45658
Missing Authorization vulnerability in POSIMYTH Nexter.This issue affects Nexter: from n/a through 2.0.3...