CVE-2024-5147
- EPSS 0.56%
- Veröffentlicht 22.05.2024 08:15:10
- Zuletzt bearbeitet 05.02.2025 14:52:39
The WPZOOM Addons for Elementor (Templates, Widgets) plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.1.37 via the 'grid_style' parameter. This makes it possible for unauthenticated attackers to inclu...
CVE-2024-4370
- EPSS 0.71%
- Veröffentlicht 15.05.2024 00:15:10
- Zuletzt bearbeitet 05.02.2025 14:47:17
The WPZOOM Addons for Elementor (Templates, Widgets) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widget Image Box in all versions up to, and including, 1.1.36 due to insufficient input sanitization and output es...
CVE-2024-33539
- EPSS 0.29%
- Veröffentlicht 29.04.2024 06:15:08
- Zuletzt bearbeitet 03.02.2025 21:14:03
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPZOOM WPZOOM Addons for Elementor (Templates, Widgets) allows Stored XSS.This issue affects WPZOOM Addons for Elementor (Templates, Widgets): from ...