Vulnerability Details CVE-2021-24262
The “WooLentor – WooCommerce Elementor Addons + Builder” WordPress Plugin before 1.8.6 has a widget that is vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.1%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
- https://wpscan.com/vulnerability/d6d16357-2bc3-4053-8274-d0275026e56b
- https://www.wordfence.com/blog/2021/04/recent-patches-rock-the-elementor-ecosystem/
- https://wpscan.com/vulnerability/d6d16357-2bc3-4053-8274-d0275026e56b
- https://www.wordfence.com/blog/2021/04/recent-patches-rock-the-elementor-ecosystem/
Products affected by CVE-2021-24262
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:-
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.1.0
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.2.1
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.2.2
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.3.1
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.3.2
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.3.3
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.2
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.3
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.4
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.5
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.6
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.7
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.8
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.4.9
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.0
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.1
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.2
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.3
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.4
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.6
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.7
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.5.8
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.1
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.2
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.3
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.4
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.5
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.6
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.7
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.8
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.6.9
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.0
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.2
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.3
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.4
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.5
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.6
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.7
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.7.8
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.8.0
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.8.1
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.8.2
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.8.3
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.8.4
-
cpe:2.3:a:hasthemes:woolentor_-_woocommerce_elementor_addons_+_builder:1.8.5