Futurio Extra@* Security Vulnerabilities and Issues — Futurio Extra@* CVE List

Lucene search

FuturiowpFuturio Extra*

4 matches found

CVE•added 2024/10/28 6:15 p.m.•40 views

CVE-2024-50446

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in FuturioWP Futurio Extra allows Stored XSS.This issue affects Futurio Extra: from n/a through 2.0.11.

6.5CVSS6.2AI score0.0005EPSS

CVE•added 2024/06/11 9:15 p.m.•39 views

CVE-2024-5646

The Futurio Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘header_size’ attribute within the Advanced Text Block widget in all versions up to, and including, 2.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated ...

6.4CVSS5.9AI score0.0026EPSS

CVE•added 2024/11/12 4:15 a.m.•36 views

CVE-2024-10695

The Futurio Extra plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.0.13 via the 'elementor-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-leve...

4.3CVSS4.3AI score0.00074EPSS

CVE•added 2024/12/06 2:15 p.m.•35 views

CVE-2024-53802

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FuturioWP Futurio Extra allows Stored XSS.This issue affects Futurio Extra: from n/a through 2.0.14.

6.5CVSS6.5AI score0.00034EPSS