2 matches found
CVE-2021-36888
The CVE-2021-36888 entry affects the WordPress plugin Image Hover Effects Ultimate (versions
CVE-2021-24264
The CVE concerns the WordPress plugin Image Hover Effects – Elementor Addon (before 1.3.4). A widget vulnerability enables stored XSS by low-privileges (e.g., contributors) via the eihe_tag parameter, where saving with a crafted value (including JavaScript) leads to code execution when the page i...