CVE-2024-8546 | ElementsKit Elementor Addons Plugin up to 3.2.7 on WordPress Video Widget cross site scripting

Inserito da Angelo Barbosa | Set 25, 2024 | CVE

A vulnerability, which was classified as problematic, was found in ElementsKit Elementor Addons Plugin up to 3.2.7 on WordPress. This affects an unknown part of the component Video Widget. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-8546. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-8546 | ElementsKit Elementor Addons Plugin up to 3.2.7 on WordPress Video Widget cross site scripting

Post correlati

CVE-2024-26002 | Phoenix Contact CHARX SEC-3150 up to 1.5.0 Qualcom plctool permission (VDE-2024-011)

CVE-2024-7891 | Floating Contact Button Plugin up to 2.7 on WordPress Setting cross site scripting

CVE-2024-41997 | Warp Terminal prior 0.2024.07.16.08.02 Docker Integration open_subshell command injection

CVE-2024-36647 | Church CRM 5.8.0 New Family Page Family Name cross site scripting (Issue 7029)