3 matches found
CVE-2025-22818
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in S3Bubble S3Player – WooCommerce & Elementor Integration drm-protected-video-streaming allows Stored XSS.This issue affects S3Player – WooCommerce & Elementor Integration: from n/a through = 4.2.1...
WordPress  RTS Product Showcase - WooCommerce Elementor Addon (Grid, SLider, List, Filter, Wishlist, Quickview) Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software  RTS Product Showcase - WooCommerce Elementor Addon Grid, SLider, List, Filter, Wishlist, Quickview Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1...
PT-2023-14964 · WordPress · Widgets For Woocommerce Products On Elementor
Name of the Vulnerable Software and Affected Versions: Widgets for WooCommerce Products on Elementor WordPress plugin versions prior to 1.0.8 Description: The issue is related to the lack of validation and escaping of some shortcode attributes in the Widgets for WooCommerce Products on Elementor...