Leap13

Premium Addons For Elementor

38 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-4378

  • EPSS 0.33%
  • Veröffentlicht 23.05.2024 11:15:24
  • Zuletzt bearbeitet 08.04.2026 19:21:36

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's menu and shape widgets in all versions up to, and including, 4.10.30 due to insufficient input sanitization and output escaping on use...

5.4

CVE-2024-4203

  • EPSS 0.48%
  • Veröffentlicht 02.05.2024 17:15:35
  • Zuletzt bearbeitet 08.04.2026 18:21:42

The Premium Addons Pro for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maps widget in all versions up to, and including, 4.10.30 due to insufficient input sanitization and output escaping on user supplied attri...

5.4

CVE-2024-3885

  • EPSS 0.42%
  • Veröffentlicht 02.05.2024 17:15:31
  • Zuletzt bearbeitet 08.04.2026 18:21:35

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the subcontainer value parameter in all versions up to, and including, 4.10.28 due to insufficient input sanitization and output escaping. This mak...

6.4

CVE-2024-3647

  • EPSS 0.44%
  • Veröffentlicht 02.05.2024 17:15:28
  • Zuletzt bearbeitet 08.04.2026 18:21:30

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's post ticker widget in all versions up to, and including, 4.10.28 due to insufficient input sanitization and output escaping on user su...

5.4

CVE-2024-32791

  • EPSS 0.32%
  • Veröffentlicht 24.04.2024 09:15:06
  • Zuletzt bearbeitet 23.04.2026 15:18:21

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor.This issue affects Premium Addons for Elementor: from n/a through <= 4.10.25.

6.5

CVE-2024-31278

  • EPSS 0.5%
  • Veröffentlicht 10.04.2024 16:15:13
  • Zuletzt bearbeitet 28.04.2026 13:16:45

Insertion of Sensitive Information Into Sent Data vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor.This issue affects Premium Addons for Elementor: from n/a through <= 4.10.22.

6.4

CVE-2024-2665

  • EPSS 0.46%
  • Veröffentlicht 10.04.2024 04:15:09
  • Zuletzt bearbeitet 08.04.2026 19:21:10

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's button in all versions up to, and including, 4.10.27 due to insufficient input sanitization and output escaping on user supplied attri...

5.4

CVE-2024-2666

  • EPSS 0.44%
  • Veröffentlicht 10.04.2024 04:15:09
  • Zuletzt bearbeitet 08.04.2026 17:18:35

The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the plugin's Bullet List Widget in all versions up to, and including, 4.10.24 due to insufficient input sanitization and output escaping ...

6.4

CVE-2024-2664

  • EPSS 0.45%
  • Veröffentlicht 10.04.2024 04:15:08
  • Zuletzt bearbeitet 08.04.2026 19:21:10

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown Widget in all versions up to, and including, 4.10.24 due to insufficient input sanitization and output escaping on user supp...

5.4

CVE-2024-0376

  • EPSS 0.75%
  • Veröffentlicht 09.04.2024 19:15:14
  • Zuletzt bearbeitet 08.04.2026 17:17:21

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Wrapper Link Widget in all versions up to, and including, 4.10.16 due to insufficient input sanitization and output escaping on user s...