CVE-2024-4626 | JetWidgets for Elementor Plugin up to 1.0.17 on WordPress layout_type/id cross site scripting

Posted by Angelo Barbosa | Jun 19, 2024 | CVE

A vulnerability has been found in JetWidgets for Elementor Plugin up to 1.0.17 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument layout_type/id leads to cross site scripting.

This vulnerability was named CVE-2024-4626. The attack can be initiated remotely. There is no exploit available.

CVE-2024-4626 | JetWidgets for Elementor Plugin up to 1.0.17 on WordPress layout_type/id cross site scripting

Related Posts

CVE-2024-4741 | OpenSSL up to 1.1.1x/3.0.13/3.1.5/3.2.1/3.3.0 API SSL_free_buffers use after free

CVE-2024-1489 | SMS Alert Order Notifications Plugin up to 3.6.9 on WordPress cross-site request forgery

CVE-2024-36983 | Splunk Enterprise/Cloud Platform prior 9.0.10/9.1.5/9.2.2 command injection (SVD-2024-0703)

CVE-2024-38141 | Microsoft Windows up to Server 2022 23H2 Ancillary Function Driver for WinSock use after free