Posts Tagged ‘secure WordPress sites’
Cornerstone Vulnerability – Reflected Cross-Site Scripting – CVE-2024-28002 | WordPress Plugin Vulnerability Report
Plugin Name: Cornerstone Key Information: Software Type: Plugin Software Slug: cornerstone Software Status: Active Software Author: archetyped Software Downloads: 57,853 Active Installs: 60,000 Last Updated: May 10, 2024 Patched Versions: 0.8.1 Affected Versions: <= 0.8.0 Vulnerability Details: Name: Cornerstone <= 0.8.0 Title: Reflected Cross-Site Scripting (XSS) Type: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE: CVE-2024-28002 CVSS Score: 6.1 Publicly Published:…
Read MoreThe Plus Addons for Elementor Vulnerability – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce – Authenticated Stored Cross-Site Scripting – CVE-2024-3197, CVE-2024-3199 | WordPress Plugin Vulnerability Report
Plugin Name: The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce Key Information: Software Type: Plugin Software Slug: the-plus-addons-for-elementor-page-builder Software Status: Active Software Author: posimyththemes Software Downloads: 2,244,805 Active Installs: 100,000 Last Updated: May 10, 2024 Patched Versions: 5.5.0 Affected Versions: <= 5.4.2 Vulnerability Details: Name: The Plus Addons for…
Read MorePremium Addons for Elementor Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting via ‘arrow_style’ – CVE-2024-3647 | WordPress Plugin Vulnerability Report
Plugin Name: Premium Addons for Elementor Key Information: Software Type: Plugin Software Slug: premium-addons-for-elementor Software Status: Active Software Author: leap13 Software Downloads: 31,878,013 Active Installs: 700,000 Last Updated: May 9, 2024 Patched Versions: 4.10.29 Affected Versions: <= 4.10.28 Vulnerability Details: Name: Premium Addons for Elementor <= 4.10.28 Title: Authenticated (Contributor+) Stored Cross-Site Scripting via ‘arrow_style’…
Read MoreAdvanced Cron Manager Vulnerability – debug & control – Authenticated (Admin+) Stored Cross-Site Scripting – CVE-2024-31926 | WordPress Plugin Vulnerability Report
Plugin Name: Advanced Cron Manager – debug & control Key Information: Software Type: Plugin Software Slug: advanced-cron-manager Software Status: Active Software Author: kubitomakita Software Downloads: 573,600 Active Installs: 30,000 Last Updated: April 25, 2024 Patched Versions: 2.5.3 Affected Versions: <= 2.5.2 Vulnerability Details: Name: Advanced Cron Manager – debug & control <= 2.5.2 Title: Authenticated…
Read More