Page 2 of 12 results (0.004 seconds)

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-32508 – WordPress DethemeKit For Elementor plugin <= 2.0.2 - Cross Site Scripting (XSS) vulnerability

https://notcve.org/view.php?id=CVE-2024-32508

15 Apr 2024 — Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in deTheme DethemeKit For Elementor allows Stored XSS.This issue affects DethemeKit For Elementor: from n/a through 2.0.2. La vulnerabilidad de neutralización inadecuada de la entrada durante la generación de páginas web ('Cross-site Scripting') en deTheme DethemeKit para Elementor permite almacenar XSS. Este problema afecta a DethemeKit para Elementor: desde n/a hasta 2.0.2. The DethemeKit For Elementor plugi... • https://patchstack.com/database/vulnerability/dethemekit-for-elementor/wordpress-dethemekit-for-elementor-plugin-2-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-24270 – DethemeKit For Elementor < 1.5.5.5 - Contributor+ Stored XSS

https://notcve.org/view.php?id=CVE-2021-24270

13 Apr 2021 — The “DeTheme Kit for Elementor” WordPress Plugin before 1.5.5.5 has a widget that is vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method. El Plugin de WordPress "DeTheme Kit for Elementor" de WordPress versiones anteriores a 1.5.5.5, presenta un widget que es vulnerable a un ataque de tipo Cross-Site Scripting (XSS) almacenado por usuarios con menos privilegios, como los contribuyentes, todo por medio de un método similar • https://wpscan.com/vulnerability/67967784-18b6-4e41-9597-3a4c051f3978 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •