CVE-2024-12328 | MAS Elementor Plugin up to 1.1.7 on WordPress SVG cross site scripting

Inserito da Angelo Barbosa | Gen 7, 2025 | CVE

A vulnerability was found in MAS Elementor Plugin up to 1.1.7 on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the component SVG Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-12328. The attack may be launched remotely. There is no exploit available.

CVE-2024-12328 | MAS Elementor Plugin up to 1.1.7 on WordPress SVG cross site scripting

Post correlati

CVE-2024-53704 | SonicWALL SonicOS SSL VPN improper authentication (SNWLID-2025-0003)

CVE-2024-10729 | Booking & Appointment Plugin for WooCommerce up to 6.9.0 on WordPress Option Update access control

CVE-2024-25082 | FontForge up to 20230101 Splinefont command injection

CVE-2024-33645 | Eftakhairul Islam & Sirajus Salayhin Easy Set Favicon Plugin up to 1.1 on WordPress cross site scripting