3 matches found
CVE-2024-34421
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpsurface BlogLentor allows Stored XSS.This issue affects BlogLentor: from n/a through 1.0.8...
CVE-2024-34421
CVE-2024-34421 concerns a stored cross-site scripting (XSS) flaw in BlogLentor (BlogLentor – Blog Designer Pack for Elementor). The issue arises from improper input neutralization during web page generation and affects BlogLentor versions up to 1.0.8. Public references in Red Hat and Wordfence en...
PT-2024-25874 · Wpsurface · Bloglentor
Name of the Vulnerable Software and Affected Versions: wpsurface BlogLentor versions 1.0.0 through 1.0.8 Description: The issue is related to improper neutralization of input during web page generation, which leads to a Stored XSS vulnerability. This allows for the storage of malicious scripts in...