CVE-2021-24292

Public Exploit

Happy Addons for Elementor Free < 2.24.0 and Pro < 1.17.0 - Contributor+ Stored XSS

Description

The Happy Addons for Elementor WordPress plugin before 2.24.0, Happy Addons Pro for Elementor WordPress plugin before 1.17.0 have a number of widgets that are vulnerable to stored Cross-Site Scripting(XSS) by lower-privileged users such as contributors, all via a similar method: The “Card” widget accepts a “title_tag” parameter. Although the element control lists a fixed set of possible html tags, it is possible to send a ‘save_builder’ request with the “heading_tag” set to “script”, and the actual “title” parameter set to JavaScript to be executed within the script tags added by the “heading_tag” parameter.

References

Link	Tags
https://www.wordfence.com/blog/2021/04/recent-patches-rock-the-elementor-ecosystem/	third party advisory
https://wpscan.com/vulnerability/0f20e098-8106-451f-9448-d35a79f03077	third party advisory exploit

Frequently Asked Questions

What is the severity of CVE-2021-24292?: CVE-2021-24292 has been scored as a medium severity vulnerability.
How to fix CVE-2021-24292?: To fix CVE-2021-24292, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-24292 being actively exploited in the wild?: It is possible that CVE-2021-24292 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-24292?: CVE-2021-24292 affects weDevs Happy Addons for Elementor, weDevs Happy Addons Pro for Elementor.

Description

Category

CWE-79 – Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

References

Frequently Asked Questions