The Elementor Page Builder plugin prior to 2.9.9 for WordPress suffers from a stored XSS vulnerability. An author user can create posts that result in a stored XSS by using a crafted payload in custom links.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
elementor elementor page builder |