CVE-2024-9994 | Essential Addons for Elementor Plugin up to 6.1.12 on WordPress Pricing Table Widget eael_pricing_item_tooltip_content cross site scripting

Inserito da Angelo Barbosa | Giu 7, 2025 | CVE

A vulnerability was found in Essential Addons for Elementor Plugin up to 6.1.12 on WordPress. It has been classified as problematic. Affected is an unknown function of the component Pricing Table Widget. The manipulation of the argument eael_pricing_item_tooltip_content leads to cross site scripting.

This vulnerability is traded as CVE-2024-9994. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-9994 | Essential Addons for Elementor Plugin up to 6.1.12 on WordPress Pricing Table Widget eael_pricing_item_tooltip_content cross site scripting

Post correlati

CVE-2024-50967 | Becon DATAGerry up to 2.2.0 REST API Endpoint /rest/rights/ information disclosure

CVE-2025-5388 | JeeWMS up to 20250504 generateController.do?dogenerate sql injection (IC5FNV)

CVE-2024-13093 | code-projects Job Recruitment 1.0 Seeker Profile _call_main_search_ajax.php s1 sql injection

CVE-2025-20156 | Cisco Meeting Management up to 3.9.0 REST API insufficient privileges (cisco-sa-cmm-privesc-uy2Vf8pc)