CVE-2024-34373

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published May 6, 2024

CWE ID 79

Summary

CVE-2024-34373 is a Cross-site Scripting (XSS) vulnerability affecting The Plus Addons for Elementor Page Builder Lite, as identified by the Common Vulnerabilities and Exposures (CVE) database. This issue arises due to improper neutralization of user input during web page generation. An attacker can exploit this vulnerability to inject malicious scripts into a targeted website, potentially leading to unauthorized access or data theft. The affected versions of The Plus Addons for Elementor Page Builder Lite range from n/a through 5.4.2. It is crucial for users to update to the latest version or implement appropriate security measures to mitigate the risk of this XSS vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database