Leevio

Happy Addons For Elementor

26 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-10538

  • EPSS 0.15%
  • Veröffentlicht 12.11.2024 04:15:03
  • Zuletzt bearbeitet 14.11.2024 13:27:00

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the before_label parameter in the Image Comparison widget in all versions up to, and including, 3.12.5 due to insufficient input sanitization and out...

8.8

CVE-2024-48045

  • EPSS 0.37%
  • Veröffentlicht 01.11.2024 15:15:56
  • Zuletzt bearbeitet 13.11.2024 01:20:11

Missing Authorization vulnerability in Leevio Happy Addons for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Happy Addons for Elementor: from n/a through 3.12.3.

5.4

CVE-2024-47357

  • EPSS 0.14%
  • Veröffentlicht 06.10.2024 10:15:04
  • Zuletzt bearbeitet 07.01.2025 13:29:50

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Leevio Happy Addons for Elementor allows Stored XSS.This issue affects Happy Addons for Elementor: from n/a through 3.12.0.

5.4

CVE-2024-6627

  • EPSS 0.23%
  • Veröffentlicht 27.07.2024 12:15:11
  • Zuletzt bearbeitet 06.02.2025 17:40:50

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's PDF View widget in all versions up to, and including, 3.11.2 due to insufficient input sanitization and output escaping on user supplied...

5.4

CVE-2024-5347

  • EPSS 0.23%
  • Veröffentlicht 31.05.2024 10:15:10
  • Zuletzt bearbeitet 07.01.2025 17:37:36

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'arrow' attribute within the plugin's Post Navigation widget in all versions up to, and including, 3.10.9 due to insufficient input sanitization ...

5.4

CVE-2024-5041

  • EPSS 0.23%
  • Veröffentlicht 31.05.2024 10:15:10
  • Zuletzt bearbeitet 07.01.2025 17:51:05

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘ha-ia-content-button’ parameter in all versions up to, and including, 3.10.9 due to insufficient input sanitization and output escaping. This ma...

5.4

CVE-2024-5088

  • EPSS 0.23%
  • Veröffentlicht 18.05.2024 12:15:47
  • Zuletzt bearbeitet 07.01.2025 18:03:40

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 3.10.8 due to insufficient input sanitization and output escaping. This makes it possible f...

5.4

CVE-2024-4865

  • EPSS 0.25%
  • Veröffentlicht 18.05.2024 03:15:06
  • Zuletzt bearbeitet 07.01.2025 18:04:22

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 3.10.8 due to insufficient input sanitization and output escaping. This makes it possible f...

5.4

CVE-2024-4391

  • EPSS 0.36%
  • Veröffentlicht 16.05.2024 09:15:17
  • Zuletzt bearbeitet 07.01.2025 18:09:14

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Event Calendar widget in all versions up to, and including, 3.10.7 due to insufficient input sanitization and output escaping on user su...

5.4

CVE-2024-4478

  • EPSS 0.36%
  • Veröffentlicht 16.05.2024 08:15:38
  • Zuletzt bearbeitet 07.01.2025 18:10:23

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Stack Group widget in all versions up to, and including, 3.10.7 due to insufficient input sanitization and output escaping on user supplied...