Unlimited-elements

Unlimited Elements For Elementor

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.5

CVE-2026-48837

  • EPSS 0.37%
  • Veröffentlicht 25.05.2026 22:05:10
  • Zuletzt bearbeitet 26.05.2026 19:31:20

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Unlimited Elements For Elementor allows Blind SQL Injection. This issue affects Unlimited Elements For Elementor: from n/a through 2.0.8.

5.4

CVE-2025-1663

  • EPSS 0.2%
  • Veröffentlicht 03.04.2025 08:15:14
  • Zuletzt bearbeitet 10.04.2025 14:02:22

The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 1.5.142 due to insufficient input sanitization and output escaping. This makes it possibl...

5.4

CVE-2024-13155

  • EPSS 0.32%
  • Veröffentlicht 20.02.2025 08:15:21
  • Zuletzt bearbeitet 25.02.2025 20:23:19

The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Transparent Split Hero widget in all versions up to, and including, 1.5.140 due to insufficient input sanitization and output esca...

5.4

CVE-2024-13153

  • EPSS 0.3%
  • Veröffentlicht 09.01.2025 09:15:07
  • Zuletzt bearbeitet 08.04.2026 18:19:56

The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and including, 1.5.135 due to insufficient input sanitization and output escaping on user supplied attr...

5.4

CVE-2024-10784

  • EPSS 0.34%
  • Veröffentlicht 12.12.2024 07:15:07
  • Zuletzt bearbeitet 12.12.2024 07:15:07

The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Tile Gallery' widget in all versions up to, and including, 1.5.126 due to insufficient input sanitizatio...

7.2

CVE-2024-49271

  • EPSS 1.11%
  • Veröffentlicht 16.10.2024 13:15:14
  • Zuletzt bearbeitet 23.04.2026 15:19:33

Deserialization of Untrusted Data vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates) unlimited-elements-for-elementor allows Command Injection.This issue affects Unlimited Elements For Elementor (Fr...

6.1

CVE-2024-45454

  • EPSS 0.3%
  • Veröffentlicht 06.10.2024 12:15:05
  • Zuletzt bearbeitet 23.04.2026 15:19:05

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates) unlimited-elements-for-elementor allows Reflected XSS.This iss...

8.8

CVE-2023-31080

  • EPSS 0.39%
  • Veröffentlicht 09.06.2024 10:15:09
  • Zuletzt bearbeitet 21.11.2024 08:01:22

Missing Authorization vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates).This issue affects Unlimited Elements For Elementor (Free Widgets, Addons, Templates): from n/a through 1.5.65.

8.8

CVE-2024-5329

  • EPSS 0.51%
  • Veröffentlicht 06.06.2024 10:15:10
  • Zuletzt bearbeitet 08.04.2026 19:21:54

The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to blind SQL Injection via the ‘data[addonID]’ parameter in all versions up to, and including, 1.5.109 due to insufficient escaping on the user ...

8.8

CVE-2024-35674

  • EPSS 0.37%
  • Veröffentlicht 05.06.2024 17:15:13
  • Zuletzt bearbeitet 23.04.2026 15:18:29

Missing Authorization vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates) unlimited-elements-for-elementor.This issue affects Unlimited Elements For Elementor (Free Widgets, Addons, Templates): from ...