Master-addons

Master Addons

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-9618

  • EPSS 0.25%
  • Veröffentlicht 04.03.2025 09:15:10
  • Zuletzt bearbeitet 04.03.2025 20:34:08

The Master Addons – Elementor Addons with White Label, Free Widgets, Hover Effects, Conditions, & Animations plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and including, 2.0.7.2 due to i...

5.4

CVE-2025-0433

  • EPSS 0.1%
  • Veröffentlicht 04.03.2025 09:15:10
  • Zuletzt bearbeitet 04.03.2025 20:34:08

The Master Addons – Elementor Addons with White Label, Free Widgets, Hover Effects, Conditions, & Animations plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 2.0.7.1 due to...

5.4

CVE-2024-9502

  • EPSS 0.36%
  • Veröffentlicht 07.01.2025 07:15:28
  • Zuletzt bearbeitet 13.03.2025 17:24:41

The Master Addons – Elementor Addons with White Label, Free Widgets, Hover Effects, Conditions, & Animations plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Tooltip module in all versions up to, and including, 2.0.6...

5.4

CVE-2024-6282

  • EPSS 0.36%
  • Veröffentlicht 10.09.2024 12:15:02
  • Zuletzt bearbeitet 26.09.2024 16:19:08

The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the data-jltma-wrapper-link element in all versions up to, and including 2.0.6.4 due t...

4.8

CVE-2024-38710

  • EPSS 0.12%
  • Veröffentlicht 20.07.2024 08:15:11
  • Zuletzt bearbeitet 03.02.2025 16:00:00

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.6.2.

9.8

CVE-2024-35660

  • EPSS 0.19%
  • Veröffentlicht 09.06.2024 12:15:13
  • Zuletzt bearbeitet 26.11.2024 16:36:34

Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1.

5.4

CVE-2024-35702

  • EPSS 0.11%
  • Veröffentlicht 08.06.2024 15:15:53
  • Zuletzt bearbeitet 21.11.2024 09:20:41

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.6.0.

5.4

CVE-2024-35688

  • EPSS 0.11%
  • Veröffentlicht 08.06.2024 15:15:51
  • Zuletzt bearbeitet 21.11.2024 09:20:40

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jewel Theme Master Addons for Elementor allows Stored XSS.This issue affects Master Addons for Elementor: from n/a through 2.0.5.9.

5.3

CVE-2024-5382

  • EPSS 0.24%
  • Veröffentlicht 07.06.2024 13:15:50
  • Zuletzt bearbeitet 21.11.2024 09:47:32

The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ma-template' REST API route in all version...

6.1

CVE-2024-5542

  • EPSS 1.99%
  • Veröffentlicht 07.06.2024 13:15:50
  • Zuletzt bearbeitet 21.11.2024 09:47:53

The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Navigation Menu widget of the plugin's Mega Menu extension in all versions up to, ...