Souzazinn

**Name of the Vulnerable Software and Affected Versions** Noor alam Magical Addons For Elementor versions 1.1.41 and earlier **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Stored XSS attacks. **Recommendations** For versions 1.1.41 and earlier, update to a version later than 1.1.41 to resolve the issue. As a temporary workaround, consider restricting user input to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Post Layouts for Gutenberg versions 1.2.7 and earlier **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Stored XSS attacks. **Recommendations** For versions 1.2.7 and earlier, update to a version that contains a fix for this issue, as the current version is affected by the Stored XSS vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) versions 1.4.1 and earlier **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS), which allows Stored XSS. This means that an attacker can inject malicious scripts into the website, potentially affecting users who access the compromised page. **Recommendations** For SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) versions 1.4.1 and earlier, update to a version later than 1.4.1 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Master Addons for Elementor versions 2.0.6.0 and earlier **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS), which allows Stored XSS. This means that an attacker can inject malicious scripts into a website, potentially affecting users who visit the site. **Recommendations** For Master Addons for Elementor versions 2.0.6.0 and earlier, update to a version later than 2.0.6.0 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** The Post Grid versions prior to 7.7.2 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Stored XSS attacks. **Recommendations** For versions prior to 7.7.2, update to version 7.7.2 or later to resolve the issue.