CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

70 matches found

Cvelist•added 2025/01/07 10:48 a.m.•11 views

CVE-2025-22316 WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.5.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpbits WPBITS Addons For Elementor Page Builder wpbits-addons-for-elementor allows Stored XSS.This issue affects WPBITS Addons For Elementor Page Builder: from n/a through = 1.5.1...

5.9CVSS0.00091EPSS

Exploits0References1

CVE•added 2025/01/07 10:48 a.m.•58 views

CVE-2025-22316

CVE-2025-22316 : Stored Cross-Site Scripting in WPBITS Addons For Elementor Page Builder due to improper input neutralization during web page generation. Affected: WPBITS Addons For Elementor Page Builder

5.9CVSS7.2AI score0.00091EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/01/07 12:0 a.m.•3 views

WordPress plugin WPBITS Addons For Elementor Page Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

6.5CVSS7.3AI score0.00163EPSS

Exploits0References1

CNNVD•added 2025/01/07 12:0 a.m.•3 views

WordPress plugin WPBITS Addons For Elementor Page Builder 跨站脚本漏洞

5.9CVSS7.3AI score0.00091EPSS

Exploits0References1

Patchstack•added 2025/01/03 11:58 a.m.•3 views

WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.5.1 - Cross-Site Scripting vulnerability

Cross-Site Scripting vulnerability discovered by Robert DeVore Patchstack Alliance in WordPress Plugin WPBITS Addons For Elementor Page Builder versions = 1.5.1...

6.5CVSS6.1AI score0.00163EPSS

Exploits0Affected Software1

Positive Technologies•added 2024/12/04 12:0 a.m.•2 views

PT-2024-39340 · WordPress · Wpbits Addons For Elementor Page Builder

Name of the Vulnerable Software and Affected Versions: WPBITS Addons For Elementor Page Builder plugin for WordPress versions up to, and including, 1.5.2 Description: The issue is related to Stored Cross-Site Scripting via SVG File uploads due to insufficient input sanitization and output escapin...

6.4CVSS6.3AI score0.00233EPSS

Exploits0References8

Patchstack•added 2024/12/03 11:47 p.m.•2 views

WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.5.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability

Authenticated Author+ Stored Cross-Site Scripting via SVG File Upload vulnerability discovered by Francesco Carlucci in WordPress Plugin WPBITS Addons For Elementor Page Builder versions = 1.5.2...

6.4CVSS5.5AI score0.00233EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/07/10 8:30 a.m.•4 views

WordPress WPBITS Addons For Elementor plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Michael Patchstack Alliance in WordPress Plugin WPBITS Addons For Elementor Page Builder versions = 1.5...

6.5CVSS5.8AI score0.00143EPSS

Exploits0Affected Software1

Patchstack•added 2024/07/10 12:0 a.m.•8 views

WordPress WPBITS Addons For Elementor Page Builder Plugin <= 1.5 is vulnerable to Cross Site Scripting (XSS)

Software WPBITS Addons For Elementor Page Builder Type Plugin Vulnerable versions = 1.5 Fixed in 1.5.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37945 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6f6499d9aa17 Credits Michael Require...

6.5AI score0.00143EPSS

Exploits0References2Affected Software1

OSV•added 2024/07/09 11:15 a.m.•2 views

CVE-2024-4862

The WPBITS Addons For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 1.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

5.4CVSS6AI score

Exploits0References11

Vulnrichment•added 2024/07/09 11:2 a.m.•10 views

CVE-2024-4862 WPBITS Addons For Elementor Page Builder <= 1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

6.4CVSS6AI score0.01043EPSS

Exploits0References11

CVE•added 2024/07/09 11:2 a.m.•47 views

CVE-2024-4862

CVE-2024-4862 affects the WPBITS Addons For Elementor Page Builder for WordPress. The Red Hat entry confirms a Stored Cross-Site Scripting vulnerability in multiple widgets caused by insufficient input sanitization and output escaping for user-supplied attributes, exploitable by authenticated att...

6.4CVSS6AI score0.01043EPSS

Exploits0References11Affected Software1

Patchstack•added 2024/07/09 10:54 a.m.•2 views

WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by stealthcopter in WordPress Plugin WPBITS Addons For Elementor Page Builder versions = 1.5...

6.4CVSS5.6AI score0.01043EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/07/09 12:0 a.m.•2 views

PT-2024-33162 · WordPress · Wpbits Addons For Elementor Page Builder

Name of the Vulnerable Software and Affected Versions: WPBITS Addons For Elementor Page Builder plugin for WordPress versions up to, and including, 1.5 Description: The issue is related to Stored Cross-Site Scripting via several widgets due to insufficient input sanitization and output escaping o...

6.4CVSS6AI score0.01043EPSS

Exploits0References16

CNNVD•added 2024/07/09 12:0 a.m.•4 views

WordPress plugin WPBITS Addons For Elementor Page Builder Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.4CVSS6.1AI score0.01043EPSS

Exploits0References12

Patchstack•added 2024/07/09 12:0 a.m.•7 views

WordPress WPBITS Addons For Elementor Page Builder Plugin <= 1.5 is vulnerable to Cross Site Scripting (XSS)

Software WPBITS Addons For Elementor Page Builder Type Plugin Vulnerable versions = 1.5 Fixed in 1.5.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4862 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e9701d5966d5 Credits...

6.4CVSS5.8AI score0.01043EPSS

Exploits0References3Affected Software1

OSV•added 2024/04/18 9:15 a.m.•2 views

CVE-2024-32593

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPBits WPBITS Addons For Elementor Page Builder allows Stored XSS.This issue affects WPBITS Addons For Elementor Page Builder: from n/a through 1.3.4.2...

5.4CVSS5.8AI score0.00163EPSS

Exploits0References1