Webangon

The Pack Elementor Addons

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-6550

  • EPSS 0.06%
  • Veröffentlicht 27.06.2025 07:22:22
  • Zuletzt bearbeitet 08.07.2025 22:15:28

The The Pack Elementor addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘slider_options’ parameter in all versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping. This makes it po...

6.5

CVE-2025-46472

  • EPSS 0.03%
  • Veröffentlicht 24.04.2025 16:15:37
  • Zuletzt bearbeitet 29.04.2025 13:52:28

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webangon The Pack Elementor addons allows Stored XSS. This issue affects The Pack Elementor addons: from n/a through 2.1.2.

6.5

CVE-2025-30925

  • EPSS 0.04%
  • Veröffentlicht 27.03.2025 10:56:07
  • Zuletzt bearbeitet 27.03.2025 16:45:12

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webangon The Pack Elementor addons allows Stored XSS. This issue affects The Pack Elementor addons: from n/a through 2.1.1.

7.5

CVE-2025-30845

  • EPSS 0.14%
  • Veröffentlicht 27.03.2025 10:55:25
  • Zuletzt bearbeitet 27.03.2025 16:45:12

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in webangon The Pack Elementor addons allows PHP Local File Inclusion. This issue affects The Pack Elementor addons: from n/a throug...

5.4

CVE-2024-52356

  • EPSS 0.06%
  • Veröffentlicht 11.11.2024 06:15:10
  • Zuletzt bearbeitet 15.11.2024 16:05:12

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webangon The Pack Elementor addons allows Stored XSS.This issue affects The Pack Elementor addons: from n/a through 2.1.0.

8.8

CVE-2024-50453

  • EPSS 0.8%
  • Veröffentlicht 28.10.2024 20:15:07
  • Zuletzt bearbeitet 22.01.2025 18:29:43

Relative Path Traversal vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion.This issue affects The Pack Elementor addons: from n/a through 2.0.9.

4.8

CVE-2024-47383

  • EPSS 0.08%
  • Veröffentlicht 05.10.2024 15:15:14
  • Zuletzt bearbeitet 22.01.2025 22:02:40

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webangon The Pack Elementor addons allows Stored XSS.This issue affects The Pack Elementor addons: from n/a through 2.0.8.8.

8.8

CVE-2024-38768

  • EPSS 1.18%
  • Veröffentlicht 01.08.2024 21:15:27
  • Zuletzt bearbeitet 22.01.2025 22:08:45

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion, Path Traversal.This issue affects The Pack Elementor addons: from n/a through 2.0.8.6.

6.1

CVE-2024-32785

  • EPSS 0.13%
  • Veröffentlicht 24.04.2024 11:15:47
  • Zuletzt bearbeitet 22.01.2025 20:26:59

Cross-Site Request Forgery (CSRF) vulnerability in Webangon The Pack Elementor addons allows Cross-Site Scripting (XSS).This issue affects The Pack Elementor addons: from n/a through 2.0.8.3.

5.4

CVE-2024-32718

  • EPSS 0.08%
  • Veröffentlicht 24.04.2024 08:15:38
  • Zuletzt bearbeitet 21.01.2025 19:21:44

Server-Side Request Forgery (SSRF) vulnerability in Webangon The Pack Elementor.This issue affects The Pack Elementor addons: from n/a through 2.0.8.2.