Quomodosoft

Elementsready

8 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-10356

  • EPSS 0.3%
  • Veröffentlicht 17.12.2024 13:15:17
  • Zuletzt bearbeitet 17.12.2024 13:15:17

The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.4.8 in inc/Widgets/accordion/output/content.php. This makes it possible for authenticated attackers, w...

5.4

CVE-2024-54224

  • EPSS 0.35%
  • Veröffentlicht 09.12.2024 13:15:42
  • Zuletzt bearbeitet 01.04.2026 16:20:47

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in quomodosoft ElementsReady Addons for Elementor element-ready-lite allows DOM-Based XSS.This issue affects ElementsReady Addons for Elementor: from n...

5.4

CVE-2024-51787

  • EPSS 0.3%
  • Veröffentlicht 09.11.2024 09:15:07
  • Zuletzt bearbeitet 01.04.2026 16:19:44

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in quomodosoft ElementsReady Addons for Elementor element-ready-lite allows Stored XSS.This issue affects ElementsReady Addons for Elementor: from n/a ...

5.4

CVE-2024-9444

  • EPSS 0.25%
  • Veröffentlicht 16.10.2024 10:15:02
  • Zuletzt bearbeitet 07.11.2025 16:10:14

The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.4.3 due to insufficient input sanitization and output escaping. This makes it possib...

6.1

CVE-2024-47353

  • EPSS 0.26%
  • Veröffentlicht 11.10.2024 19:15:10
  • Zuletzt bearbeitet 01.04.2026 16:18:09

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in quomodosoft ElementsReady Addons for Elementor element-ready-lite.This issue affects ElementsReady Addons for Elementor: from n/a through 6.4.2.

5.4

CVE-2024-47329

  • EPSS 0.2%
  • Veröffentlicht 06.10.2024 11:15:11
  • Zuletzt bearbeitet 01.04.2026 16:18:06

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in quomodosoft ElementsReady Addons for Elementor element-ready-lite allows Cross-Site Scripting (XSS).This issue affects ElementsReady Addons for Elem...

5.4

CVE-2024-5152

  • EPSS 0.23%
  • Veröffentlicht 06.06.2024 04:15:13
  • Zuletzt bearbeitet 08.04.2026 19:21:51

The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 6.1.0 due to insufficient input sanitization and output escaping. This makes it pos...

5.4

CVE-2024-34374

  • EPSS 0.16%
  • Veröffentlicht 06.05.2024 19:15:08
  • Zuletzt bearbeitet 21.11.2024 09:18:32

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuomodoSoft ElementsReady Addons for Elementor allows Stored XSS.This issue affects ElementsReady Addons for Elementor: from n/a through 5.8.0.