Elementor Website Builder – More than Just a Page Builder, CVE-2024-37437

CVE, Research URL: CVE-2024-37437
Home page URL: Security reports for Elementor Website Builder – More than Just a Page Builder
Application: Elementor Website Builder – More than Just a Page Builder
Published on: Jul 09, 2024
Research Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Elementor Elementor Website Builder allows Cross-Site Scripting (XSS), Stored XSS.This issue affects Elementor Website Builder: from n/a through 3.22.1.
Affected versions: max 3.22.2.
Status: vulnerable