Vulnerabilities > CVE-2024-35167 - Unspecified vulnerability in Envothemes Envo'S Elementor Templates & Widgets for Woocommerce

047910
CVSS 5.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
envothemes
NVD
Published: 2024-05-14
Updated: 2025-03-25

Summary

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EnvoThemes Envo's Elementor Templates & Widgets for WooCommerce allows Stored XSS.This issue affects Envo's Elementor Templates & Widgets for WooCommerce: from n/a through 1.4.8.

Vulnerable Configurations

Part Description Count
Application
Envothemes
31

References