Wpdeveloper

Essential Addons For Elementor

57 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.7

CVE-2024-8979

  • EPSS 0.68%
  • Veröffentlicht 15.11.2024 10:15:05
  • Zuletzt bearbeitet 19.11.2024 17:05:08

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.0.9 via the 'init_content_lostpass...

5.7

CVE-2024-8978

  • EPSS 0.66%
  • Veröffentlicht 15.11.2024 10:15:04
  • Zuletzt bearbeitet 19.11.2024 17:04:38

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.0.9 via the 'init_content_register...

5.4

CVE-2024-8961

  • EPSS 0.35%
  • Veröffentlicht 15.11.2024 07:15:17
  • Zuletzt bearbeitet 19.11.2024 17:01:15

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nomore_items_text’ parameter in all versions up to, and including, 6...

8.8

CVE-2021-4447

  • EPSS 0.21%
  • Veröffentlicht 16.10.2024 07:15:10
  • Zuletzt bearbeitet 10.01.2025 14:39:08

The Essential Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in versions up to and including 4.6.4 due to a lack of restrictions on who can add a registration form and a custom registration role to an Elementor creat...

4.3

CVE-2021-4446

  • EPSS 0.05%
  • Veröffentlicht 16.10.2024 07:15:10
  • Zuletzt bearbeitet 10.01.2025 14:46:34

The Essential Addons for Elementor plugin for WordPress is vulnerable to authorization bypass in versions up to and including 4.6.4 due to missing capability checks and nonce disclosure. This makes it possible for authenticated attackers, with minima...

5.4

CVE-2024-8742

  • EPSS 0.55%
  • Veröffentlicht 13.09.2024 07:15:08
  • Zuletzt bearbeitet 27.09.2024 16:28:07

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Filterable Gallery widget in all versions up to, and includi...

5.4

CVE-2024-8440

  • EPSS 0.35%
  • Veröffentlicht 11.09.2024 07:15:04
  • Zuletzt bearbeitet 25.09.2024 19:34:19

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Fancy Text widget in all versions up to, and including, 6.0.3 due t...

5.4

CVE-2024-7092

  • EPSS 0.23%
  • Veröffentlicht 13.08.2024 05:15:14
  • Zuletzt bearbeitet 08.01.2025 20:53:45

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘no_more_items_text’ parameter in all versions up to, and including, 5.9.27 ...

5.4

CVE-2024-39649

  • EPSS 0.28%
  • Veröffentlicht 01.08.2024 22:15:26
  • Zuletzt bearbeitet 01.03.2025 02:14:17

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS.This issue affects Essential Addons for Elementor: from n/a through 5.9.26.

5.4

CVE-2024-5189

  • EPSS 0.2%
  • Veröffentlicht 11.06.2024 14:15:12
  • Zuletzt bearbeitet 15.01.2025 17:16:13

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘custom_js’ parameter in all versions up to, and including, 5.9.23 due to in...