Webtechstreet

Elementor Addon Elements

25 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-13215

  • EPSS 0.19%
  • Veröffentlicht 15.01.2025 13:15:09
  • Zuletzt bearbeitet 23.01.2025 17:35:41

The Elementor Addon Elements plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.13.10 via the 'render' function in modules/modal-popup/widgets/modal-popup.php. This makes it possible for authe...

8.8

CVE-2024-47361

  • EPSS 0.66%
  • Veröffentlicht 01.11.2024 15:15:55
  • Zuletzt bearbeitet 01.04.2026 16:18:10

Missing Authorization vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder.This issue affects Elementor Addon Elements: from n/a through <= 1.13.6.

4.3

CVE-2024-8902

  • EPSS 0.29%
  • Veröffentlicht 12.10.2024 10:15:03
  • Zuletzt bearbeitet 16.01.2025 15:23:21

The Elementor Addon Elements plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.13.8 via the render_column function in modules/data-table/widgets/data-table.php. This makes it possible for aut...

5.4

CVE-2024-47366

  • EPSS 0.2%
  • Veröffentlicht 06.10.2024 10:15:05
  • Zuletzt bearbeitet 01.04.2026 16:18:11

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Stored XSS.This issue affects Elementor Addon Elements: from n/a t...

5.4

CVE-2024-7122

  • EPSS 0.48%
  • Veröffentlicht 30.08.2024 10:15:06
  • Zuletzt bearbeitet 20.08.2025 12:23:06

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and including, 1.13.6 due to insufficient input sanitization and output escaping on user supplied attributes. T...

5.4

CVE-2024-4401

  • EPSS 0.38%
  • Veröffentlicht 30.08.2024 04:15:06
  • Zuletzt bearbeitet 20.08.2025 12:22:27

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ and 'eae_slider_animation' parameters in all versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping....

5.4

CVE-2024-4570

  • EPSS 0.21%
  • Veröffentlicht 27.06.2024 04:15:12
  • Zuletzt bearbeitet 08.04.2026 19:21:42

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping. This makes it possible for aut...

5.4

CVE-2024-4569

  • EPSS 0.17%
  • Veröffentlicht 27.06.2024 04:15:11
  • Zuletzt bearbeitet 08.04.2026 18:21:52

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping. This makes it possible for aut...

5.4

CVE-2024-2092

  • EPSS 0.32%
  • Veröffentlicht 12.06.2024 10:15:30
  • Zuletzt bearbeitet 08.04.2026 18:20:58

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Twitter Widget in all versions up to, and including, 1.13.3 due to insufficient input sanitization and output escaping on user supplied at...

5.4

CVE-2024-3743

  • EPSS 0.23%
  • Veröffentlicht 02.05.2024 17:15:31
  • Zuletzt bearbeitet 08.04.2026 19:21:26

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Stack Group, Shape Separator, Content Switcher, Info Circle and Timeline widgets in all versions up to, and including, 1.13.3 due to insuffic...