CVE-2024-9888
- EPSS 0.31%
- Veröffentlicht 16.10.2024 06:15:03
- Zuletzt bearbeitet 06.03.2025 18:13:11
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's contact form widget redirect URL in all versions up to, and including, 1.2.8 due to insufficient input sanitization and output ...
CVE-2024-47630
- EPSS 0.22%
- Veröffentlicht 05.10.2024 14:15:04
- Zuletzt bearbeitet 01.04.2026 16:18:17
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Element Invader ElementInvader Addons for Elementor elementinvader-addons-for-elementor allows Stored XSS.This issue affects ElementInvader Addons f...
CVE-2024-38705
- EPSS 0.14%
- Veröffentlicht 20.07.2024 08:15:11
- Zuletzt bearbeitet 07.03.2025 16:48:11
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ElementInvader ElementInvader Addons for Elementor allows Stored XSS.This issue affects ElementInvader Addons for Elementor: from n/a through...
CVE-2024-2308
- EPSS 0.11%
- Veröffentlicht 16.03.2024 02:15:09
- Zuletzt bearbeitet 08.04.2026 18:21:03
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the button link in the EliSlider in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping. Thi...