6 matches found
CVE-2024-32593
CVE-2024-32593 affects the WordPress plugin WPBITS Addons For Elementor Page Builder (versions 1.3.4.2 and earlier). The vulnerability is Stored XSS arising from improper neutralization during web page generation. Impact is limited to confidentiality/integrity (low) with no availability impact pe...
CVE-2025-22316
CVE-2025-22316 : Stored Cross-Site Scripting in WPBITS Addons For Elementor Page Builder due to improper input neutralization during web page generation. Affected: WPBITS Addons For Elementor Page Builder
CVE-2024-2129
CVE-2024-2129: WPBITS Addons For Elementor Page Builder for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s heading widget in all versions up to and including 1.3.4.2, due to insufficient input sanitization and output escaping on user-supplied attributes. Attack scenario: ...
CVE-2024-8962
CVE-2024-8962 concerns the WordPress plugin WPBITS Addons For Elementor Page Builder. The vulnerability is a Stored Cross-Site Scripting (XSS) via SVG file uploads in versions up to and including 1.5.2, caused by insufficient input sanitization and output escaping. Exploitation requires an authen...
CVE-2024-4862
CVE-2024-4862 affects the WPBITS Addons For Elementor Page Builder for WordPress. The Red Hat entry confirms a Stored Cross-Site Scripting vulnerability in multiple widgets caused by insufficient input sanitization and output escaping for user-supplied attributes, exploitable by authenticated att...
CVE-2024-56285
CVE-2024-56285 corresponds to a Stored XSS in WPBITS Addons For Elementor Page Builder. The issue is described as Improper Neutralization of Input During Web Page Generation (XSS) and affects WPBITS Addons For Elementor Page Builder versions from n/a up to 1.5.1. The connected Wordfence vulnerabi...