CVE-2024-4896 | WPB Elementor Addons up to 1.0.9 on WordPress URL Parameter cross site scripting

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability classified as problematic was found in WPB Elementor Addons up to 1.0.9 on WordPress. Affected by this vulnerability is an unknown functionality of the component URL Parameter Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-4896. The attack can be launched remotely. There is no exploit available.

CVE-2024-4896 | WPB Elementor Addons up to 1.0.9 on WordPress URL Parameter cross site scripting

Related Posts

CVE-2024-8296 | FeehiCMS up to 2.1.1 index.php insert User[avatar] unrestricted upload

CVE-2024-7145 | JetElements Plugin up to 2.6.20 on WordPress file inclusion

CVE-2024-33913 | Xserver Migrator Plugin up to 1.6.1 on WordPress cross-site request forgery

CVE-2024-48545 | IVY Smart 4.5.0 Firmware Update information disclosure