Leap13

Premium Addons For Elementor

37 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-4203

  • EPSS 0.26%
  • Veröffentlicht 02.05.2024 17:15:35
  • Zuletzt bearbeitet 08.04.2026 18:21:42

The Premium Addons Pro for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maps widget in all versions up to, and including, 4.10.30 due to insufficient input sanitization and output escaping on user supplied attri...

5.4

CVE-2024-3885

  • EPSS 0.21%
  • Veröffentlicht 02.05.2024 17:15:31
  • Zuletzt bearbeitet 08.04.2026 18:21:35

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the subcontainer value parameter in all versions up to, and including, 4.10.28 due to insufficient input sanitization and output escaping. This mak...

6.4

CVE-2024-3647

  • EPSS 0.2%
  • Veröffentlicht 02.05.2024 17:15:28
  • Zuletzt bearbeitet 08.04.2026 18:21:30

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's post ticker widget in all versions up to, and including, 4.10.28 due to insufficient input sanitization and output escaping on user su...

5.4

CVE-2024-32791

  • EPSS 0.15%
  • Veröffentlicht 24.04.2024 09:15:06
  • Zuletzt bearbeitet 01.04.2026 16:17:06

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor.This issue affects Premium Addons for Elementor: from n/a through <= 4.10.25.

6.5

CVE-2024-31278

  • EPSS 0.74%
  • Veröffentlicht 10.04.2024 16:15:13
  • Zuletzt bearbeitet 01.04.2026 16:16:57

Insertion of Sensitive Information Into Sent Data vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor.This issue affects Premium Addons for Elementor: from n/a through <= 4.10.22.

5.4

CVE-2024-2666

  • EPSS 0.18%
  • Veröffentlicht 10.04.2024 04:15:09
  • Zuletzt bearbeitet 08.04.2026 17:18:35

The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the plugin's Bullet List Widget in all versions up to, and including, 4.10.24 due to insufficient input sanitization and output escaping ...

6.4

CVE-2024-2665

  • EPSS 0.18%
  • Veröffentlicht 10.04.2024 04:15:09
  • Zuletzt bearbeitet 08.04.2026 19:21:10

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's button in all versions up to, and including, 4.10.27 due to insufficient input sanitization and output escaping on user supplied attri...

6.4

CVE-2024-2664

  • EPSS 0.23%
  • Veröffentlicht 10.04.2024 04:15:08
  • Zuletzt bearbeitet 08.04.2026 19:21:10

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown Widget in all versions up to, and including, 4.10.24 due to insufficient input sanitization and output escaping on user supp...

5.4

CVE-2024-0376

  • EPSS 2.97%
  • Veröffentlicht 09.04.2024 19:15:14
  • Zuletzt bearbeitet 08.04.2026 17:17:21

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Wrapper Link Widget in all versions up to, and including, 4.10.16 due to insufficient input sanitization and output escaping on user s...

5.4

CVE-2024-29106

  • EPSS 0.06%
  • Veröffentlicht 19.03.2024 16:15:14
  • Zuletzt bearbeitet 27.01.2025 16:11:23

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Addons for Elementor allows Stored XSS.This issue affects Premium Addons for Elementor: from n/a through 4.10.16.