WordPress LA-Studio Element Kit for Elementor plugin <= 1.3.9.2 - Cross Site Scripting (XSS) vulnerability
CVE-2024-43210
6.5MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 12 August 2024
What is CVE-2024-43210?
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LA-Studio LA-Studio Element Kit for Elementor allows Stored XSS.This issue affects LA-Studio Element Kit for Elementor: from n/a through 1.3.9.2.
Affected Version(s)
LA-Studio Element Kit for Elementor <= 1.3.9.2