XSS vulnerability

WP Plugin Vulnerabilities Image - Happy Addons for Elementor Vulnerability - Multiple XSS Vulnerabilities -  CVE-2024-2787, CVE-2024-2789, CVE-2024-1498, CVE-2024-1387 | WordPress Plugin Vulnerability Report - XSS vulnerability

Happy Addons for Elementor Vulnerability – Multiple XSS Vulnerabilities –  CVE-2024-2787, CVE-2024-2789, CVE-2024-1498, CVE-2024-1387 | WordPress Plugin Vulnerability Report

By Your WP Guy / Apr 3, 2024

Plugin Name: Happy Addons for Elementor Key Information Software Type: Plugin Software Slug: happy-elementor-addons Software Status: Active Software Author: thehappymonster Software Downloads: 6,284,286 Active Installs: 400,000 Last Updated: April 4, 2024 Patched Versions: 3.10.5, 3.10.4 Affected Versions: <= 3.10.3 Vulnerability Details Vulnerability 1 Name: Happy Addons for Elementor <= 3.10.4 – Authenticated Stored Cross-Site Scripting…

Read More
WP Plugin Vulnerabilities Image - Beaver Builder Vulnerability – WordPress Page Builder - Authenticated Stored Cross-Site Scripting via Button - CVE-2024-2925 | WordPress Plugin Vulnerability Report  - XSS vulnerability

Beaver Builder Vulnerability – WordPress Page Builder – Authenticated Stored Cross-Site Scripting via Button – CVE-2024-2925 | WordPress Plugin Vulnerability Report 

By Your WP Guy / Apr 1, 2024

Plugin Name: Beaver Builder – WordPress Page Builder Key Information: Software Type: Plugin Software Slug: beaver-builder-lite-version Software Status: Active Software Author: justinbusa Software Downloads: 9,939,163 Active Installs: 10,000 Last Updated: April 3, 2024 Patched Versions: 2.8.0.7 Affected Versions: <= 2.8.0.5 Vulnerability Details: Name: Beaver Builder – WordPress Page Builder <= 2.8.0.5 Title: Authenticated (Contributor+) Stored…

Read More
WP Plugin Vulnerabilities Image - WP Chat App Vulnerability - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Image Attribute - CVE-2024-2513 |WordPress Plugin Vulnerability Report - XSS vulnerability

WP Chat App Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting via Block Image Attribute – CVE-2024-2513 |WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 29, 2024

Plugin Name: WP Chat App Key Information: Software Type: Plugin Software Slug: wp-whatsapp Software Status: Active Software Author: ninjateam Software Downloads: 950,913 Active Installs: 100,000 Last Updated: April 1, 2024 Patched Versions: 3.6.3 Affected Versions: <= 3.6.2 Vulnerability Details: Name: WP Chat App <= 3.6.2 Title: Authenticated (Contributor+) Stored Cross-Site Scripting via Block Image Attribute…

Read More
WP Plugin Vulnerabilities Image - Ultimate Addons for Beaver Builder Vulnerability – Lite - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Separator Widget - CVE-2024-2144 | WordPress Plugin Vulnerability Report - XSS vulnerability

Ultimate Addons for Beaver Builder Vulnerability – Lite – Authenticated (Contributor+) Stored Cross-Site Scripting via Image Separator Widget – CVE-2024-2144 | WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 29, 2024

Plugin Name: Ultimate Addons for Beaver Builder – Lite Key Information: Software Type: Plugin Software Slug: ultimate-addons-for-beaver-builder-lite Software Status: Active Software Author: brainstormforce Software Downloads: 499,391 Active Installs: 30,000 Last Updated: April 1, 2024 Patched Versions: 1.5.8 Affected Versions: <= 1.5.7 Vulnerability Details: Name: Ultimate Addons for Beaver Builder – Lite <= 1.5.7 Type: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N…

Read More
WP Plugin Vulnerabilities Image - Media Library Assistant Vulnerability - Authenticated (Contributor+) Stored Cross-Site Scripting via mla_gallery Shortcode - CVE-2024-2475 |WordPress Plugin Vulnerability Report  - XSS vulnerability

Media Library Assistant Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting via mla_gallery Shortcode – CVE-2024-2475 |WordPress Plugin Vulnerability Report 

By Your WP Guy / Mar 28, 2024

Plugin Name: Media Library Assistant Key Information: Software Type: Plugin Software Slug: media-library-assistant Software Status: Active Software Author: dglingren Software Downloads: 1,901,312 Active Installs: 70,000 Last Updated: April 1, 2024 Patched Versions: 3.14 Affected Versions: <= 3.13 Vulnerability Details: Name: Media Library Assistant <= 3.13 Title: Authenticated (Contributor+) Stored Cross-Site Scripting via mla_gallery Shortcode Type:…

Read More
WP Plugin Vulnerabilities Image - Stackable Vulnerability – Page Builder Gutenberg Blocks - Authenticated Stored Cross-Site Scripting via Posts Block - CVE-2024-2039 |WordPress Plugin Vulnerability Report - XSS vulnerability

Stackable Vulnerability – Page Builder Gutenberg Blocks – Authenticated Stored Cross-Site Scripting via Posts Block – CVE-2024-2039 |WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 28, 2024

Plugin Name: Stackable – Page Builder Gutenberg Blocks Key Information: Software Type: Plugin Software Slug: stackable-ultimate-gutenberg-blocks Software Status: Active Software Author: bfintal Software Downloads: 2,943,541 Active Installs: 100,000 Last Updated: March 28, 2024 Patched Versions: 3.12.12 Affected Versions: <= 3.12.11 Vulnerability Details: Name: Stackable – Page Builder Gutenberg Blocks <= 3.12.11 Title: Authenticated (Contributor+) Stored…

Read More
WP Plugin Vulnerabilities Image - Sydney Toolbox Vulnerability - Authenticated (Contributor+) Stored Cross-Site Scripting via _id - CVE-2024-2936 |WordPress Plugin Vulnerability Report - XSS vulnerability

Sydney Toolbox Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting via _id – CVE-2024-2936 |WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 28, 2024

Plugin Name: Sydney Toolbox Key Information: Software Type: Plugin Software Slug: sydney-toolbox Software Status: Active Software Author: athemes Software Downloads: 2,161,148 Active Installs: 80,000 Last Updated: April 1, 2024 Patched Versions: 1.27 Affected Versions: <= 1.26 Vulnerability Details: Name: Sydney Toolbox <= 1.26 Title: Authenticated (Contributor+) Stored Cross-Site Scripting via _id Type: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N CVE: CVE-2024-2936…

Read More
WP Plugin Vulnerabilities Image - Events Manager Vulnerability – Calendar, Bookings, Tickets, and more! - Multiple Vulnerabilities - CVE-2024-2111 & CVE-2024-2110 |WordPress Plugin Vulnerability Report - XSS vulnerability

Events Manager Vulnerability – Calendar, Bookings, Tickets, and more! – Multiple Vulnerabilities – CVE-2024-2111 & CVE-2024-2110 |WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 27, 2024

Plugin Name: Events Manager – Calendar, Bookings, Tickets, and more! Key Information: Software Type: Plugin Software Slug: events-manager Software Status: Active Software Author: netweblogic Software Downloads: 4,637,218 Active Installs: 90,000 Last Updated: March 27, 2024 Patched Versions: 6.4.7.2 Affected Versions: <= 6.4.7.1 Vulnerability 1 Details: Name: Events Manager <= 6.4.7.1 Title: Authenticated (Contributor+) Stored Cross-Site…

Read More
WP Plugin Vulnerabilities Image - Master Addons Vulnerability – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor - Authenticated (Contributor+) Stored Cross-Site Scripting via Pricing Table Widget - CVE-2024-2139 |WordPress Plugin Vulnerability Report - XSS vulnerability

Master Addons Vulnerability – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor – Authenticated (Contributor+) Stored Cross-Site Scripting via Pricing Table Widget – CVE-2024-2139 |WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 26, 2024

Plugin Name: Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor Key Information: Software Type: Plugin Software Slug: master-addons Software Status: Active Software Author: litonice13 Software Downloads: 1,012,079 Active Installs: 40,000 Last Updated: March 26, 2024 Patched Versions: 2.0.5.7 Affected Versions: <= 2.0.5.6 Vulnerability Details: Name: Master Addons for Elementor <= 2.0.5.6…

Read More
WP Plugin Vulnerabilities Image - BetterDocs Vulnerability – Best Documentation, FAQ & Knowledge Base Plugin with AI Support & Instant Answer for Elementor & Gutenberg - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode - CVE-2024-2845 | WordPress Plugin Vulnerability Report - XSS vulnerability

BetterDocs Vulnerability – Best Documentation, FAQ & Knowledge Base Plugin with AI Support & Instant Answer for Elementor & Gutenberg – Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode – CVE-2024-2845 | WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 25, 2024

Plugin Name: BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support & Instant Answer for Elementor & Gutenberg Key Information: Software Type: Plugin Software Slug: betterdocs Software Status: Active Software Author: wpdevteam Software Downloads: 1,219,559 Active Installs: 30,000 Last Updated: March 26, 2024 Patched Versions: 3.5.0 Affected Versions: <= 3.4.2 Vulnerability Details:…

Read More