CVE-2024-54230

Name of the Vulnerable Software and Affected Versions: WPRealizer Unlock Addons for Elementor versions 1.0.0 and earlier

Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS), which allows DOM-Based XSS. This is a type of security vulnerability that occurs when an application includes user input in the output it generates, without properly validating or sanitizing the input. As a result, an attacker could inject malicious scripts into the website, potentially leading to unauthorized access or control.

Recommendations: For WPRealizer Unlock Addons for Elementor versions 1.0.0 and earlier, update to a version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.