CVE-2024-2507 | JetWidgets for Elementor Plugin up to 1.0.16 on WordPress Widget Button URL cross site scripting

Posted by Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability was found in JetWidgets for Elementor Plugin up to 1.0.16 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Widget Button URL Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-2507. The attack can be initiated remotely. There is no exploit available.

CVE-2024-2507 | JetWidgets for Elementor Plugin up to 1.0.16 on WordPress Widget Button URL cross site scripting

Related Posts

CVE-2024-25631 | Cilium up to 1.14.6 External kvstore missing encryption (GHSA-x989-52fc-4vr4)

CVE-2023-5692 | WordPress up to 6.4.3 redirect_guess_404_permalink information disclosure

CVE-2024-2499 | Squelch Tabs and Accordions Shortcodes Plugin up to 0.4.3 on WordPress Shortcode accordions cross site scripting

CVE-2023-46929 | GPAC GPAC 2.3-DEV-rev605-gfc9e29089-master MP4Box av_parsers.c gf_avc_change_vui denial of service (Issue 2662)