The Elements Kit Lite and Elements Kit Pro WordPress Plugins prior to 2.2.0 have a number of widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|