CVE-2024-53823

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 6, 2024
CWE ID 79

Summary

CVE-2024-53823 is a Cross-site Scripting (XSS) vulnerability affecting The Plus Addons for Elementor Page Builder Lite. The issue, which allows DOM-Based XSS attacks, arises due to improper neutralization of user input during web page generation. This weakness can be exploited by an attacker to inject malicious scripts into a victim's web browser, potentially leading to unauthorized access or data theft. The vulnerability impacts versions of The Plus Addons for Elementor Page Builder Lite from n/a through 5.6.14. Users are urged to update to a patched version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share