CVE-2024-5188 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.22 on WordPress get_manual_calendar_events cross site scripting

Inserito da Angelo Barbosa | Giu 6, 2024 | CVE

A vulnerability was found in wpdevteam Essential Addons for Elementor Plugin up to 5.9.22 on WordPress. It has been classified as problematic. This affects the function get_manual_calendar_events. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-5188. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-5188 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.22 on WordPress get_manual_calendar_events cross site scripting

Post correlati

CVE-2023-6478 | X.org X11 Server prior 21.1.10 Request out-of-bounds

CVE-2024-24867 | Osamaesh WP Visitor Statistics Plugin up to 6.9.4 on WordPress information disclosure

CVE-2023-42765 | Westermo Lynx 206-F2G 4.24 SNMP Configuration username cross site scripting (icsa-24-023-04)

CVE-2024-25969 | Dell PowerScale OneFS up to 9.3.0.0/9.4.0.17/9.5.0.7/9.7.0.1 allocation of resources (dsa-2024-163)