CVE-2024-0586 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.4 on WordPress Login/Register cross site scripting (ID 3022852)

Inserito da Angelo Barbosa | Feb 6, 2024 | CVE

A vulnerability, which was classified as problematic, was found in wpdevteam Essential Addons for Elementor Plugin up to 5.9.4 on WordPress. Affected is an unknown function of the component Login/Register. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-0586. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0586 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.4 on WordPress Login/Register cross site scripting (ID 3022852)

Post correlati

CVE-2023-50297 | Alfasado PowerCMS up to 4.54/5.24/6.31 URL redirect

CVE-2024-33525 | ILIAS up to 7.30/8.10/9.0 XML File Upload cross site scripting

CVE-2024-22154 | SNP Digital SalesKing Plugin up to 1.6.15 on WordPress information disclosure

CVE-2024-4182 | Mattermost up to 8.1.11/9.4.4/9.5.2/9.6.0/9.7.0 JSON Parser unusual condition