Bdthemes

Element Pack

35 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4

CVE-2024-5555

  • EPSS 0.45%
  • Veröffentlicht 18.07.2024 09:15:02
  • Zuletzt bearbeitet 08.04.2026 19:21:57

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘social-link-title’ parameter in all versions up to, and including, ...

6.4

CVE-2024-5554

  • EPSS 0.38%
  • Veröffentlicht 18.07.2024 09:15:02
  • Zuletzt bearbeitet 08.04.2026 18:22:07

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘onclick_event’ parameter in all versions up to, and including, 5.6....

5.4

CVE-2024-3925

  • EPSS 0.47%
  • Veröffentlicht 12.06.2024 08:15:50
  • Zuletzt bearbeitet 08.04.2026 17:18:49

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Creative Button widget in all versions up to, and including...

6.5

CVE-2024-33568

  • EPSS 0.74%
  • Veröffentlicht 04.06.2024 14:15:10
  • Zuletzt bearbeitet 26.02.2025 13:15:39

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Deserialization of Untrusted Data vulnerability in BdThemes Element Pack Pro allows Path Traversal, Object Injection.This issue affects Element Pack Pro: from n/a before ...

5.4

CVE-2024-3926

  • EPSS 0.37%
  • Veröffentlicht 22.05.2024 15:15:28
  • Zuletzt bearbeitet 08.04.2026 19:21:29

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom_attributes value in widgets in all versions up to, and includ...

5.3

CVE-2024-3927

  • EPSS 0.51%
  • Veröffentlicht 22.05.2024 07:15:13
  • Zuletzt bearbeitet 08.04.2026 18:21:36

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Form Submission Admin Email Bypass in all versions up to, and including, 5.6.3. This is due to the plug...

5.4

CVE-2024-32572

  • EPSS 0.14%
  • Veröffentlicht 18.04.2024 10:15:11
  • Zuletzt bearbeitet 21.01.2025 19:41:11

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BdThemes Element Pack Elementor Addons allows Stored XSS.This issue affects Element Pack Elementor Addons: from n/a through 5.6.0.

5.4

CVE-2024-1429

  • EPSS 0.17%
  • Veröffentlicht 18.04.2024 05:15:48
  • Zuletzt bearbeitet 08.04.2026 18:20:38

The Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tab_link’ attribute of the Pan...

5.4

CVE-2024-1426

  • EPSS 0.18%
  • Veröffentlicht 18.04.2024 05:15:47
  • Zuletzt bearbeitet 08.04.2026 17:18:20

The Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ attribute of the Price L...

7.5

CVE-2024-2966

  • EPSS 0.64%
  • Veröffentlicht 11.04.2024 08:15:50
  • Zuletzt bearbeitet 08.04.2026 18:21:17

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.5.6 via the element_pack_ajax_se...