CVE-2026-4790 | leap13 Premium Addons for Elementor Plugin up to 4.11.70 on WordPress versions custom_svg cross site scripting

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability, which was classified as problematic, was found in leap13 Premium Addons for Elementor Plugin up to 4.11.70 on WordPress. This affects the function versions. The manipulation of the argument custom_svg results in cross site scripting.

This vulnerability is reported as CVE-2026-4790. The attack can be launched remotely. No exploit exists.

CVE-2026-4790 | leap13 Premium Addons for Elementor Plugin up to 4.11.70 on WordPress versions custom_svg cross site scripting

Post correlati

CVE-2025-13348 | ASUS Business Manager prior 3.0.37.0 Secure Delete Driver authorization

CVE-2024-10106 | Silabs Ember ZNet SDK 7.4.0/7.4.0.0/8.0.0 Packet Handoff Plugin buffer overflow

CVE-2024-10254 | Lenovo PC Manager/Browser/App Store heap-based overflow

CVE-2022-40732 | Microsoft Windows 11/Server 2022 win32kbase.sys DirectComposition null pointer dereference (TALOS-2022-1514)