CVE-2024-3611

The Toolbar Extras for Elementor & More – WordPress Admin Bar Enhanced plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tbex-version' shortcode in all versions up to, and including, 1.4.9 due to insufficient input sanitization and output escaping on user supplie...

WordPress Toolbar Extras for Elementor & More plugin <= 1.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Krzysztof Zając in WordPress Plugin Toolbar Extras for Elementor & More versions = 1.4.9...

WordPress Toolbar Extras for Elementor & More Plugin <= 1.4.9 is vulnerable to Cross Site Scripting (XSS)

Software Toolbar Extras for Elementor & More Type Plugin Vulnerable versions = 1.4.9 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3611 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4fce580ecf65 Credits...

WordPress plugin Toolbar Extras for Elementor & More – WordPress Admin Bar Enhanced 安全漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress plugin Toolbar Extras...