Elementinvader

Elementinvader Addons For Elementor

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2026-25028

  • EPSS 0.01%
  • Veröffentlicht 03.02.2026 14:08:41
  • Zuletzt bearbeitet 05.02.2026 15:16:09

Missing Authorization vulnerability in Element Invader ElementInvader Addons for Elementor elementinvader-addons-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ElementInvader Addons for Elemen...

6.5

CVE-2025-58205

  • EPSS 0.03%
  • Veröffentlicht 27.08.2025 17:45:46
  • Zuletzt bearbeitet 29.08.2025 16:24:09

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Element Invader ElementInvader Addons for Elementor allows DOM-Based XSS. This issue affects ElementInvader Addons for Elementor: from n/a through 1...

6.5

CVE-2025-48288

  • EPSS 0.05%
  • Veröffentlicht 19.05.2025 14:45:29
  • Zuletzt bearbeitet 21.05.2025 20:25:33

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Element Invader ElementInvader Addons for Elementor allows Stored XSS. This issue affects ElementInvader Addons for Elementor: from n/a through 1.3....

5.4

CVE-2025-24729

  • EPSS 0.12%
  • Veröffentlicht 24.01.2025 18:15:47
  • Zuletzt bearbeitet 06.03.2025 19:02:47

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ElementInvader ElementInvader Addons for Elementor allows Stored XSS. This issue affects ElementInvader Addons for Elementor: from n/a through 1.3.3...

8.8

CVE-2025-24618

  • EPSS 0.23%
  • Veröffentlicht 24.01.2025 18:15:37
  • Zuletzt bearbeitet 06.03.2025 19:02:47

Missing Authorization vulnerability in ElementInvader ElementInvader Addons for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ElementInvader Addons for Elementor: from n/a through 1.3.1.

5.4

CVE-2025-24578

  • EPSS 0.28%
  • Veröffentlicht 24.01.2025 18:15:34
  • Zuletzt bearbeitet 06.03.2025 19:02:47

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ElementInvader ElementInvader Addons for Elementor allows DOM-Based XSS. This issue affects ElementInvader Addons for Elementor: from n/a through 1....

8.8

CVE-2025-22786

  • EPSS 0.3%
  • Veröffentlicht 15.01.2025 16:15:41
  • Zuletzt bearbeitet 06.03.2025 19:02:47

Path Traversal vulnerability in ElementInvader ElementInvader Addons for Elementor allows PHP Local File Inclusion.This issue affects ElementInvader Addons for Elementor: from n/a through 1.2.6.

4.3

CVE-2024-12059

  • EPSS 0.24%
  • Veröffentlicht 12.12.2024 06:15:23
  • Zuletzt bearbeitet 06.03.2025 19:54:57

The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.1 via the eli_option_value shortcode. This makes it possible for authenticated attackers, with Cont...

4.3

CVE-2024-9889

  • EPSS 0.3%
  • Veröffentlicht 19.10.2024 07:15:03
  • Zuletzt bearbeitet 01.11.2024 15:27:23

The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.9 via the Page Loader widget. This makes it possible for authenticated attackers, with contributor-...

5.4

CVE-2024-9888

  • EPSS 0.23%
  • Veröffentlicht 16.10.2024 06:15:03
  • Zuletzt bearbeitet 06.03.2025 18:13:11

The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's contact form widget redirect URL in all versions up to, and including, 1.2.8 due to insufficient input sanitization and output ...