CVE-2024-9388
Published
CVSS v3
6.4
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
The Black Widgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.3.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses the SVG file.
<p>Black Widgets is a free add-on for Elementor; with this plugin, you can create unique elements with the ability to customize your website.</p>
<p>We will add more widgets with more and more styles that may surprise you in the future; for now, add black widgets to your WordPress, and don’t miss future updates.</p>
<p><a href="https://modernaweb.net/black-widgets/" rel="nofollow ugc">Black Widgets Demo</a></p>
<h3>Create your own styles</h3>
<p>✔️ 21 Widgets<br />
⚡ An Awesome Typography<br />
⚡ Great Animate with AnimeJS and GSAP<br />
⚡ CSS Transform(2D & 3D CSS Styles)<br />
⚡ Scroll Trigger(with CDN)</p>
<h3>✹ Dsgn</h3>
<p>Dsgn is a simple way to start a website easily, quickly, and free. This is Free & + Fresh Templates Design for Elementor and Black Widgets.</p>
<p><a href="https://modernaweb.net/dsgn/" rel="nofollow ugc">Dsgn Templates</a><br />
<a href="https://modernaweb.net/dsgn/solutions/" rel="nofollow ugc">Our Solutions</a></p>
<p>— Enjoy 😉</p>
<h3>Available Widgets</h3>
<ul>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-title/" rel="nofollow ugc">Black Title</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-button/" rel="nofollow ugc">Black Button</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-image/" rel="nofollow ugc">Black Image Pro</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-flip-box/" rel="nofollow ugc">Black Flip Box</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-title-animate/" rel="nofollow ugc">Black Title Animate</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-magic-link/" rel="nofollow ugc">Black Magic Link</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-dropcap/" rel="nofollow ugc">Black Drop Cap</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-fade/" rel="nofollow ugc">Black Fade</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-alert/" rel="nofollow ugc">Black Alert</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-icon/" rel="nofollow ugc">Black Icon</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-list/" rel="nofollow ugc">Black List</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-social-links/" rel="nofollow ugc">Black Social Links</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-icon-box-pro/" rel="nofollow ugc">Black Icon Box Pro</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-call-to-action/" rel="nofollow ugc">Black Call to Action</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-blockquote/" rel="nofollow ugc">Black Blockquote</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-typography/" rel="nofollow ugc">Black Typography(for experts)</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-box/" rel="nofollow ugc">Black Box</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-flat-nav/" rel="nofollow ugc">Black Flat Nav(menu)</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-sentence/" rel="nofollow ugc">Black Sentence</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-trigger/" rel="nofollow ugc">Black Trigger(for experts)</a></li>
<li><a href="https://modernaweb.net/black-widgets/all-widgets/black-horizontal/" rel="nofollow ugc">Black Horizontal(for experts)</a></li>
</ul>
<h3>Features</h3>
<ul>
<li><a href="https://modernaweb.net/black-widgets/features/builder-tools/" rel="nofollow ugc">Builder Tools By Elementor</a></li>
<li><a href="https://modernaweb.net/black-widgets/features/typography/" rel="nofollow ugc">Typography</a></li>
<li><a href="https://modernaweb.net/black-widgets/features/gsap-animate/" rel="nofollow ugc">GSAP Animate</a></li>
<li><a href="https://modernaweb.net/black-widgets/support/whats-new/" rel="nofollow ugc">What’s New</a></li>
</ul>
<h3>Support</h3>
<p>If you found an issue or have a new suggestion, contact us: <a href="mailto:modernawebdesign@gmail.com" rel="nofollow ugc"> <strong>[email protected]</strong> </a></p>
<ul>
<li><a href="https://modernaweb.net/contact/" rel="nofollow ugc">Contact Us</a></li>
<li><a href="https://modernaweb.net/black-widgets/support/solutions/" rel="nofollow ugc">Solutions</a></li>
<li><a href="https://modernaweb.net/black-widgets/features/documentation/" rel="nofollow ugc">Documentation</a></li>
<li><a href="https://modernaweb.net/black-widgets/support/get-creative/" rel="nofollow ugc">Get Creative</a></li>
</ul>
WordPress Plugin Directory