CVE-2021-24258

Published: 2021-05-05T19:15Z

Last Modified: 2024-11-21T05:52Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The Elements Kit Lite and Elements Kit Pro WordPress Plugins before 2.2.0 have a number of widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt