cleantalk
Vulnerabilities and Security Researches

myCred Elementor, CVE-2024-49702

CVE, Research URL

CVE-2024-49702

Home page URL

Security reports for myCred Elementor

Application

myCred Elementor

Published on
Oct 24, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in myCRED myCred Elementor allows Stored XSS.This issue affects myCred Elementor: from n/a through 1.2.6.
Affected versions
Min -, max 1.2.7.
Status
vulnerable
Previous vulnerability researches
myCred Elementor (CVE-2024-49702) , Oct 25, 2024
myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin (CVE-2024-43214) , Aug 13, 2024
myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin (CVE-2025-49857) , Jun 19, 2025
myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin (CVE-2025-49872) , Jun 19, 2025
myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin (CVE-2024-8658) , Sep 26, 2024
New vulnerability
WP2LEADS | WordPress und KlickTipp einfach verbinden – WooCommerce und KlickTipp einfach verbinden (CVE-2025-49316) , Jun 20, 2025
Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit (CVE-2025-1562) , Jun 20, 2025
eCommerce Product Catalog Plugin for WordPress (CVE-2025-49331) , Jun 20, 2025
Broadstreet (CVE-2025-4652) , Jun 20, 2025
Majestic Support – Help Desk & Support Plugin (CVE-2025-49860) , Jun 20, 2025