CVE-2026-2295
- EPSS 0.02%
- Veröffentlicht 11.02.2026 09:27:15
- Zuletzt bearbeitet 11.02.2026 15:27:26
The WPZOOM Addons for Elementor – Starter Templates & Widgets plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'ajax_post_grid_load_more' function in all versions up to, and including, 1.3.2. ...
CVE-2025-67951
- EPSS 0.05%
- Veröffentlicht 16.12.2025 08:12:57
- Zuletzt bearbeitet 30.01.2026 18:15:58
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPZOOM WPZOOM Addons for Elementor wpzoom-elementor-addons allows DOM-Based XSS.This issue affects WPZOOM Addons for Elementor: from n/a through <= ...
CVE-2024-5686
- EPSS 0.26%
- Veröffentlicht 20.06.2024 04:15:18
- Zuletzt bearbeitet 21.11.2024 09:48:09
The WPZOOM Addons for Elementor (Templates, Widgets) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ attribute within the plugin's Team Members widget in all versions up to, and including, 1.1.38 due to insufficient in...