Leap13

Premium Addons For Elementor

37 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-4203

  • EPSS 0.26%
  • Veröffentlicht 02.05.2024 17:15:35
  • Zuletzt bearbeitet 15.01.2025 18:05:49

The Premium Addons Pro for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maps widget in all versions up to, and including, 4.10.30 due to insufficient input sanitization and output escaping on user supplied attri...

5.4

CVE-2024-3885

  • EPSS 0.21%
  • Veröffentlicht 02.05.2024 17:15:31
  • Zuletzt bearbeitet 15.01.2025 18:03:51

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the subcontainer value parameter in all versions up to, and including, 4.10.28 due to insufficient input sanitization and output escaping. This mak...

6.4

CVE-2024-3647

  • EPSS 0.2%
  • Veröffentlicht 02.05.2024 17:15:28
  • Zuletzt bearbeitet 08.01.2025 21:10:47

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's post ticker widget in all versions up to, and including, 4.10.28 due to insufficient input sanitization and output escaping on user su...

5.4

CVE-2024-32791

  • EPSS 0.09%
  • Veröffentlicht 24.04.2024 09:15:06
  • Zuletzt bearbeitet 21.01.2025 19:17:17

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Addons for Elementor allows Stored XSS.This issue affects Premium Addons for Elementor: from n/a through 4.10.25.

6.5

CVE-2024-31278

  • EPSS 0.71%
  • Veröffentlicht 10.04.2024 16:15:13
  • Zuletzt bearbeitet 09.01.2025 17:15:33

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Leap13 Premium Addons for Elementor.This issue affects Premium Addons for Elementor: from n/a through 4.10.22.

5.4

CVE-2024-2666

  • EPSS 0.18%
  • Veröffentlicht 10.04.2024 04:15:09
  • Zuletzt bearbeitet 08.01.2025 19:47:15

The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the plugin's Bullet List Widget in all versions up to, and including, 4.10.24 due to insufficient input sanitization and output escaping ...

6.5

CVE-2024-2665

  • EPSS 0.31%
  • Veröffentlicht 10.04.2024 04:15:09
  • Zuletzt bearbeitet 08.01.2025 20:05:50

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's button in all versions up to, and including, 4.10.27 due to insufficient input sanitization and output escaping on user supplied attri...

6.4

CVE-2024-2664

  • EPSS 0.23%
  • Veröffentlicht 10.04.2024 04:15:08
  • Zuletzt bearbeitet 08.01.2025 20:05:38

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown Widget in all versions up to, and including, 4.10.24 due to insufficient input sanitization and output escaping on user supp...

5.4

CVE-2024-0376

  • EPSS 2.97%
  • Veröffentlicht 09.04.2024 19:15:14
  • Zuletzt bearbeitet 09.01.2025 15:13:53

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Wrapper Link Widget in all versions up to, and including, 4.10.16 due to insufficient input sanitization and output escaping on user s...

5.4

CVE-2024-29106

  • EPSS 0.06%
  • Veröffentlicht 19.03.2024 16:15:14
  • Zuletzt bearbeitet 27.01.2025 16:11:23

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Addons for Elementor allows Stored XSS.This issue affects Premium Addons for Elementor: from n/a through 4.10.16.