Cheat sheets

CVE-2020-15020: WordPress plugin vulnerability

Share this with people that should know this:

An issue was discovered in the Elementor plugin through 2.9.13 for WordPress. An authenticated attacker can achieve stored XSS via the Name Your Template field.

References

  • hidden-one.co.in/2020/07/07/cve-2020-1020-stored-xss-on-elementor-wordpress-plugin/
  • wordpress.org/plugins/elementor/#developers
  • Share this with people that should know this: