Pencilwp

X Addons For Elementor

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2026-24605

  • EPSS 0.01%
  • Veröffentlicht 23.01.2026 14:29:03
  • Zuletzt bearbeitet 26.01.2026 15:03:51

Missing Authorization vulnerability in pencilwp X Addons for Elementor x-addons-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects X Addons for Elementor: from n/a through <= 1.0.23.

6.5

CVE-2026-22518

  • EPSS 0.04%
  • Veröffentlicht 08.01.2026 16:21:08
  • Zuletzt bearbeitet 08.01.2026 18:08:18

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pencilwp X Addons for Elementor allows DOM-Based XSS.This issue affects X Addons for Elementor: from n/a through 1.0.23.

6.4

CVE-2025-9204

  • EPSS 0.03%
  • Veröffentlicht 03.10.2025 11:17:21
  • Zuletzt bearbeitet 06.10.2025 14:56:47

The X Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Youtube Video ID field in all versions up to, and including, 1.0.14. This is due to insufficient input sanitization and output escaping on the Youtub...

5.4

CVE-2025-48132

  • EPSS 0.05%
  • Veröffentlicht 16.05.2025 15:45:13
  • Zuletzt bearbeitet 30.05.2025 14:15:56

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pencilwp X Addons for Elementor allows Stored XSS. This issue affects X Addons for Elementor: from n/a through 1.0.14.