3 matches found
CVE-2024-4896
CVE-2024-4896 is documented to affect the WPB Elementor Addons WordPress plugin. The connected Wordfence entry confirms a Stored Cross‑Site Scripting vulnerability via the url parameter in all versions up to 1.0.9, caused by insufficient input sanitization and output escaping. Exploitation requir...
CVE-2024-3063
CVE-2024-3063 refers to a Stored Cross‑Site Scripting (XSS) vulnerability in the WPB Elementor Addons WordPress plugin. Affected versions are all ≤ 1.0.9, due to insufficient input sanitization and output escaping on widget tag attributes. Exploitation requires authentication at contributor level...
CVE-2024-34791
CVE-2024-34791 : Public documents do not include concrete technical details (affected product/versions/root cause/fix). Monitor for updates.