Lucene search

CVE-2024-33649 WordPress Opal Widgets For Elementor plugin <= 1.6.9 - Cross Site Scripting (XSS) vulnerability

🗓️ 29 Apr 2024 04:14:53Reported by PatchstackType

WordPress Opal Widgets For Elementor plugin XSS vulnerabilit

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2024-33649	29 Apr 202405:15	–	cve
Cvelist	CVE-2024-33649 WordPress Opal Widgets For Elementor plugin <= 1.6.9 - Cross Site Scripting (XSS) vulnerability	29 Apr 202404:53	–	cvelist
WPVulnDB	Opal Widgets For Elementor <= 1.6.9 - Authenticated (Contributor+) Stored Cross-Site Scripting	1 May 202400:00	–	wpvulndb
Patchstack	WordPress Opal Widgets For Elementor Plugin <= 1.6.9 is vulnerable to Cross Site Scripting (XSS)	25 Apr 202400:00	–	patchstack
RedhatCVE	CVE-2024-33649	23 May 202507:57	–	redhatcve
NVD	CVE-2024-33649	29 Apr 202405:15	–	nvd
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (April 22, 2024 to April 28, 2024)	2 May 202414:49	–	wordfence

[
  {
    "cpes": [
      "cpe:2.3:a:wpopal:opal_widgets_for_elementor:*:*:*:*:*:*:*:*"
    ],
    "vendor": "wpopal",
    "product": "opal_widgets_for_elementor",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "versionType": "custom",
        "lessThanOrEqual": "1.6.9"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/opal-widgets-for-elementor/wordpress-opal-widgets-for-elementor-plugin-1-6-9-cross-site-scripting-xss-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Apr 2024 04:53Current

6.7Medium risk

Vulners AI Score6.7

CVSS36.5

EPSS0.0014

SSVC

CWE-79