Black Widgets For Elementor Security Vulnerabilities and Issues — Black Widgets For Elementor CVE List

Lucene search

ModernawebBlack Widgets For Elementor

5 matches found

CVE•added 2024/10/30 11:15 a.m.•47 views

CVE-2024-9388

The Black Widgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.3.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access...

6.4CVSS5.7AI score0.0004EPSS

CVE•added 2024/08/01 11:15 p.m.•39 views

CVE-2024-39644

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows Stored XSS.This issue affects Black Widgets For Elementor: from n/a through 1.3.5.

6.5CVSS6.5AI score0.0007EPSS

CVE•added 2024/08/01 10:15 p.m.•39 views

CVE-2024-39662

6.5CVSS6.5AI score0.00089EPSS

CVE•added 2025/01/09 4:16 p.m.•39 views

CVE-2025-22806

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows DOM-Based XSS.This issue affects Black Widgets For Elementor: from n/a through 1.3.8.

6.5CVSS6.5AI score0.00034EPSS

CVE•added 2024/11/09 2:15 p.m.•36 views

CVE-2024-51662

6.5CVSS5.9AI score0.00045EPSS