CVE-2024-2117 | Elementor Website Builder Plugin up to 3.20.2 on WordPress Path Widget cross site scripting

Posted by Angelo Barbosa | Mar 26, 2024 | CVE

A vulnerability classified as problematic was found in Elementor Website Builder Plugin up to 3.20.2 on WordPress. Affected by this vulnerability is an unknown functionality of the component Path Widget. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-2117. The attack can be launched remotely. There is no exploit available.

CVE-2024-2117 | Elementor Website Builder Plugin up to 3.20.2 on WordPress Path Widget cross site scripting

Related Posts

CVE-2024-41603 | Spina CMS 2.18.0 /admin/layout cross-site request forgery

CVE-2024-1919 | SourceCodester Online Job Portal 1.0 Manage Walkin Page ManageWalkin.php Job Title cross site scripting

CVE-2024-25310 | code-projects Simple School Management System 1.0 School/delete.php id sql injection

CVE-2023-51394 | Silabs Ember ZNet SDK up to 7.3.x null pointer dereference