exploitDog

GHSA-jm8w-fg28-xm4m

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The â€œUltimate Addons for Elementorâ€? WordPress Plugin before 1.30.0 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.

The â€œUltimate Addons for Elementorâ€? WordPress Plugin before 1.30.0 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.

Ссылки

EPSS

Процентиль: 45%

0.00222

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-24271

CVSS3: 5.4

nvd

почти 5 лет назад

The “Ultimate Addons for Elementor” WordPress Plugin before 1.30.0 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.

EPSS

Процентиль: 45%

0.00222

Низкий

CVE ID

Дефекты

CWE-79