Lucene search

K
SinaextraSina Extension For Elementor

9 matches found

CVE
CVE
added 2024/04/25 8:15 a.m.85 views

CVE-2024-3988

The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Sina Fancy Text Widget in all versions up to, and including, 3.5.2 due to insuf...

6.4CVSS5.7AI score0.00093EPSS
CVE
CVE
added 2024/03/27 11:15 a.m.49 views

CVE-2024-29935

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SinaExtra Sina Extension for Elementor allows Stored XSS.This issue affects Sina Extension for Elementor: from n/a through 3.5.0.

6.5CVSS6.7AI score0.0012EPSS
CVE
CVE
added 2024/06/08 3:15 p.m.42 views

CVE-2024-35703

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SinaExtra Sina Extension for Elementor allows Stored XSS.This issue affects Sina Extension for Elementor: from n/a through 3.5.3.

6.5CVSS6AI score0.00081EPSS
CVE
CVE
added 2024/05/14 4:17 p.m.41 views

CVE-2024-4333

The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting via several parameters in versions up to, and including, 3.5.3 due to insufficient input sani...

6.4CVSS8.2AI score0.00148EPSS
CVE
CVE
added 2024/05/15 2:15 a.m.41 views

CVE-2024-4373

The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Sina Particle Layer widget in all versions up to, and including, 3.5.3 due to i...

6.4CVSS5.7AI score0.00213EPSS
CVE
CVE
added 2024/10/16 8:15 a.m.38 views

CVE-2024-9540

The Sina Extension for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.7 via the render function in widgets/advanced/sina-modal-box.php. This makes it possible for authenticated attackers, with Contributor-level access and abo...

4.3CVSS4.7AI score0.00118EPSS
CVE
CVE
added 2024/07/02 9:15 a.m.36 views

CVE-2024-5260

The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘read_more_text’ parameter in all versions up to, and including, 3.5.5 due to insufficie...

6.4CVSS5.9AI score0.00089EPSS
CVE
CVE
added 2024/06/20 11:15 a.m.33 views

CVE-2024-5036

The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 3.5.4 due to insufficient input sa...

6.4CVSS5.9AI score0.00188EPSS
CVE
CVE
added 2024/06/04 2:15 p.m.18 views

CVE-2024-34384

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in SinaExtra Sina Extension for Elementor allows PHP Local File Inclusion.This issue affects Sina Extension for Elementor: from n/a through 3.5.1.

8.8CVSS7.5AI score0.00594EPSS