Webtechstreet

Elementor Addon Elements

25 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-13215

  • EPSS 0.17%
  • Veröffentlicht 15.01.2025 13:15:09
  • Zuletzt bearbeitet 23.01.2025 17:35:41

The Elementor Addon Elements plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.13.10 via the 'render' function in modules/modal-popup/widgets/modal-popup.php. This makes it possible for authe...

8.8

CVE-2024-47361

  • EPSS 0.49%
  • Veröffentlicht 01.11.2024 15:15:55
  • Zuletzt bearbeitet 12.11.2024 20:25:04

Missing Authorization vulnerability in WPVibes Elementor Addon Elements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elementor Addon Elements: from n/a through 1.13.6.

4.3

CVE-2024-8902

  • EPSS 0.21%
  • Veröffentlicht 12.10.2024 10:15:03
  • Zuletzt bearbeitet 16.01.2025 15:23:21

The Elementor Addon Elements plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.13.8 via the render_column function in modules/data-table/widgets/data-table.php. This makes it possible for aut...

5.4

CVE-2024-47366

  • EPSS 0.1%
  • Veröffentlicht 06.10.2024 10:15:05
  • Zuletzt bearbeitet 29.01.2025 16:38:17

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPVibes Elementor Addon Elements allows Stored XSS.This issue affects Elementor Addon Elements: from n/a through 1.13.6.

5.4

CVE-2024-7122

  • EPSS 0.35%
  • Veröffentlicht 30.08.2024 10:15:06
  • Zuletzt bearbeitet 20.08.2025 12:23:06

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and including, 1.13.6 due to insufficient input sanitization and output escaping on user supplied attributes. T...

5.4

CVE-2024-4401

  • EPSS 0.28%
  • Veröffentlicht 30.08.2024 04:15:06
  • Zuletzt bearbeitet 20.08.2025 12:22:27

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ and 'eae_slider_animation' parameters in all versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping....

5.4

CVE-2024-4570

  • EPSS 0.21%
  • Veröffentlicht 27.06.2024 04:15:12
  • Zuletzt bearbeitet 21.11.2024 09:43:07

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping. This makes it possible for aut...

5.4

CVE-2024-4569

  • EPSS 0.17%
  • Veröffentlicht 27.06.2024 04:15:11
  • Zuletzt bearbeitet 21.11.2024 09:43:07

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in versions up to, and including, 1.13.5 due to insufficient input sanitization and output escaping. This makes it possible for aut...

5.4

CVE-2024-2092

  • EPSS 0.32%
  • Veröffentlicht 12.06.2024 10:15:30
  • Zuletzt bearbeitet 20.08.2025 12:22:54

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Twitter Widget in all versions up to, and including, 1.13.3 due to insufficient input sanitization and output escaping on user supplied at...

5.4

CVE-2024-3743

  • EPSS 0.23%
  • Veröffentlicht 02.05.2024 17:15:31
  • Zuletzt bearbeitet 17.01.2025 15:03:47

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Stack Group, Shape Separator, Content Switcher, Info Circle and Timeline widgets in all versions up to, and including, 1.13.3 due to insuffic...