Wpthemespace

Magical Addons For Elementor

8 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-54212

  • EPSS 0.22%
  • Veröffentlicht 06.12.2024 14:15:26
  • Zuletzt bearbeitet 01.04.2026 16:20:46

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor Alam Magical Addons For Elementor magical-addons-for-elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a thro...

4.3

CVE-2024-10352

  • EPSS 0.41%
  • Veröffentlicht 09.11.2024 12:15:17
  • Zuletzt bearbeitet 29.01.2025 19:10:38

The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the get_content_type function in includes/widgets/content-reveal.php. This makes it possible for aut...

4.3

CVE-2024-51665

  • EPSS 35.38%
  • Veröffentlicht 04.11.2024 14:15:16
  • Zuletzt bearbeitet 01.04.2026 16:19:33

Server-Side Request Forgery (SSRF) vulnerability in Noor Alam Magical Addons For Elementor magical-addons-for-elementor allows Server Side Request Forgery.This issue affects Magical Addons For Elementor: from n/a through <= 1.2.1.

6.4

CVE-2024-38730

  • EPSS 0.19%
  • Veröffentlicht 22.07.2024 11:15:04
  • Zuletzt bearbeitet 21.11.2024 09:26:42

Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41.

5.4

CVE-2024-38681

  • EPSS 0.08%
  • Veröffentlicht 20.07.2024 08:15:07
  • Zuletzt bearbeitet 03.02.2025 16:03:37

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Noor alam Magical Addons For Elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through 1.1.41.

5.4

CVE-2024-5161

  • EPSS 0.23%
  • Veröffentlicht 06.06.2024 04:15:14
  • Zuletzt bearbeitet 08.04.2026 19:21:52

The Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 1.1.39 due...

5.4

CVE-2024-2923

  • EPSS 0.31%
  • Veröffentlicht 14.05.2024 15:21:26
  • Zuletzt bearbeitet 08.04.2026 18:21:16

The Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's text effect widget in all versions up to, and including...

5.4

CVE-2024-34547

  • EPSS 0.29%
  • Veröffentlicht 08.05.2024 12:15:08
  • Zuletzt bearbeitet 28.01.2025 03:28:09

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor alam Magical Addons For Elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through 1.1.34.