Livemeshelementor

Addons For Elementor

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-8858

  • EPSS 0.26%
  • Veröffentlicht 25.09.2024 11:15:12
  • Zuletzt bearbeitet 02.10.2024 18:41:29

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘piechart_settings’ parameter in all versions up to, and including, 8.5 due to insufficient input sanitization and output escaping. This makes ...

5.4

CVE-2024-47303

  • EPSS 0.11%
  • Veröffentlicht 25.09.2024 08:15:04
  • Zuletzt bearbeitet 02.10.2024 19:00:24

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Livemesh Livemesh Addons for Elementor allows Stored XSS.This issue affects Livemesh Addons for Elementor: from n/a through 8.5.

5.4

CVE-2024-3639

  • EPSS 0.2%
  • Veröffentlicht 04.07.2024 04:15:16
  • Zuletzt bearbeitet 21.11.2024 09:30:03

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Posts Grid widget in all versions up to, and including, 8.3.7 due to insufficient input sanitization and output escaping on user supp...

5.4

CVE-2024-3638

  • EPSS 0.23%
  • Veröffentlicht 04.07.2024 04:15:15
  • Zuletzt bearbeitet 21.11.2024 09:30:03

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Marquee Text Widget, Testimonials Widget, and Testimonial Slider widgets in all versions up to, and including, 8.3.7 due to insufficie...

5.4

CVE-2024-2926

  • EPSS 0.45%
  • Veröffentlicht 04.07.2024 04:15:14
  • Zuletzt bearbeitet 21.11.2024 09:10:51

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 8.3.7 due to insufficient input sanitization and output escaping on user supplied attrib...

8.8

CVE-2024-2385

  • EPSS 0.31%
  • Veröffentlicht 04.07.2024 04:15:14
  • Zuletzt bearbeitet 21.11.2024 09:09:38

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.3.7 via several of the plugin's widgets through the 'style' attribute. This makes it possible for authenticated attack...

6.4

CVE-2024-5229

  • EPSS 0.27%
  • Veröffentlicht 25.05.2024 03:15:08
  • Zuletzt bearbeitet 21.11.2024 09:47:13

The Primary Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Pricing Table widget in all versions up to, and including, 1.5.5 due to insufficient input sanitization and output escaping on user sup...

5.4

CVE-2024-2655

  • EPSS 0.27%
  • Veröffentlicht 10.04.2024 06:15:06
  • Zuletzt bearbeitet 17.01.2025 19:18:36

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Post widgets in all versions up to, and including, 8.3.5 due to insufficient input sanitization and output escaping on author display ...

5.4

CVE-2024-2539

  • EPSS 0.17%
  • Veröffentlicht 10.04.2024 06:15:06
  • Zuletzt bearbeitet 17.01.2025 19:20:18

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via widget '_id' attributes in all versions up to, and including, 8.3.6 due to insufficient input sanitization and output escaping on user supplied att...

5.4

CVE-2024-1466

  • EPSS 0.23%
  • Veröffentlicht 09.04.2024 19:15:18
  • Zuletzt bearbeitet 17.01.2025 18:18:00

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘slider_style’ attribute of the Posts Multislider widget in all versions up to, and including, 8.3.4 due to insufficient input sanitization and...