CVE-2024-3926 | bdthemes Element Pack Elementor Addons Plugin up to 5.6.1 on WordPress custom_attributes cross site scripting (ID 3066178)

Inserito da Angelo Barbosa | Mag 22, 2024 | CVE

A vulnerability classified as problematic has been found in bdthemes Element Pack Elementor Addons Plugin up to 5.6.1 on WordPress. Affected is an unknown function. The manipulation of the argument custom_attributes leads to cross site scripting.

This vulnerability is traded as CVE-2024-3926. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-3926 | bdthemes Element Pack Elementor Addons Plugin up to 5.6.1 on WordPress custom_attributes cross site scripting (ID 3066178)

Post correlati

CVE-2024-3923 | Beaver Builder Plugin up to 2.8.1.1 on WordPress cross site scripting

CVE-2024-22774 | Panoramic Digital Imaging Software 9.1.2.7600 ccsservice.exe Local Privilege Escalation

CVE-2023-7091 | Dreamer CMS 4.1.3 /upload/uploadFile file unrestricted upload

CVE-2024-4033 | All-in-One Video Gallery Plugin up to 3.6.4 on WordPress Image unrestricted upload