CVE-2024-13827 | razorpay Razorpay Subscription Button Elementor Plugin up to 1.0.3 on WordPress add_query_arg cross site scripting

Inserito da Angelo Barbosa | Mar 5, 2025 | CVE

A vulnerability classified as problematic was found in razorpay Razorpay Subscription Button Elementor Plugin up to 1.0.3 on WordPress. This vulnerability affects the function add_query_arg. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-13827. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13827 | razorpay Razorpay Subscription Button Elementor Plugin up to 1.0.3 on WordPress add_query_arg cross site scripting

Post correlati

CVE-2024-9164 | GitLab Enterprise Edition up to 17.2.8/17.3.4/17.4.1 Pipeline missing authentication (Issue 493946)

CVE-2024-47615 | GStreamer up to 1.24.9 vorbis_parse.c gst_parse_vorbis_setup_packet out-of-bounds write (GHSL-2024-115)

CVE-2023-51098 | Tenda W9 1.0.0.7(4456)_CN formSetDiagnoseInfo command injection

CVE-2025-0349 | Tenda AC6 15.03.05.16 GetParentControlInfo src stack-based overflow