Exclusiveaddons

Exclusive Addons For Elementor

20 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-7498

  • EPSS 0.03%
  • Veröffentlicht 06.08.2025 03:41:00
  • Zuletzt bearbeitet 12.08.2025 16:31:54

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Countdown Widget in all versions up to, and including, 2.7.9.4 due to insufficient input sanitization and output escaping. This makes it poss...

5.4

CVE-2025-4783

  • EPSS 0.04%
  • Veröffentlicht 26.05.2025 23:22:38
  • Zuletzt bearbeitet 12.08.2025 20:00:01

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the HTML attributes of the Countdown Timer Widget in all versions up to, and including, 2.7.9.1 due to insufficient input sanitization and output...

5.4

CVE-2025-1571

  • EPSS 0.09%
  • Veröffentlicht 28.02.2025 07:15:34
  • Zuletzt bearbeitet 28.02.2025 07:15:34

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Animated Text and Image Comparison Widgets in all versions up to, and including, 2.7.6 due to insufficient input sanitization and ou...

4.3

CVE-2024-10312

  • EPSS 0.14%
  • Veröffentlicht 29.10.2024 08:15:12
  • Zuletzt bearbeitet 24.01.2025 16:38:39

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.4 via the render function in elements/tabs/tabs.php. This makes it possible for authenticated attackers,...

5.4

CVE-2024-49292

  • EPSS 0.21%
  • Veröffentlicht 17.10.2024 19:15:22
  • Zuletzt bearbeitet 06.03.2025 14:25:09

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Exclusive Addons Exclusive Addons Elementor allows Stored XSS.This issue affects Exclusive Addons Elementor: from n/a through 2.7.1.

5.4

CVE-2024-5332

  • EPSS 0.22%
  • Veröffentlicht 26.06.2024 06:15:16
  • Zuletzt bearbeitet 21.11.2024 09:47:26

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Card widget in all versions up to, and including, 2.6.9.8 due to insufficient input sanitization and output escaping on user supplie...

5.4

CVE-2024-4618

  • EPSS 0.27%
  • Veröffentlicht 15.05.2024 02:15:10
  • Zuletzt bearbeitet 24.01.2025 16:37:51

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Team Member widget in all versions up to, and including, 2.6.9.6 due to insufficient input sanitization and output escaping on user supplied ...

9.8

CVE-2024-33914

  • EPSS 0.23%
  • Veröffentlicht 03.05.2024 09:15:08
  • Zuletzt bearbeitet 10.04.2025 19:40:42

Missing Authorization vulnerability in Exclusive Addons Exclusive Addons Elementor.This issue affects Exclusive Addons Elementor: from n/a through 2.6.9.1.

5.4

CVE-2024-3985

  • EPSS 0.2%
  • Veröffentlicht 02.05.2024 17:15:33
  • Zuletzt bearbeitet 21.01.2025 19:52:52

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Call to Action widget in all versions up to, and including, 2.6.9.3 due to insufficient input sanitization and output escaping on us...

5.4

CVE-2024-3489

  • EPSS 0.8%
  • Veröffentlicht 02.05.2024 17:15:25
  • Zuletzt bearbeitet 21.01.2025 20:21:03

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the Countdown Expired Title in all versions up to, and including, 2.6.9.4 due to insufficient input sanitization and output escaping. This mak...