Wpdeveloper

Essential Addons For Elementor

54 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4

CVE-2024-1236

  • EPSS 0.2%
  • Published 29.02.2024 01:43:44
  • Last modified 08.01.2025 19:08:56

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Filterable Controls label icon parameter in all versions up to, and includin...

5.4

CVE-2024-1172

  • EPSS 0.17%
  • Published 29.02.2024 01:43:41
  • Last modified 08.01.2025 19:08:16

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Accordion widget in all versions up to, and including, 5.9.8 due to...

5.4

CVE-2024-1171

  • EPSS 0.15%
  • Published 29.02.2024 01:43:41
  • Last modified 08.01.2025 19:07:55

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Filterable Gallery Widget in all versions up to, and including, 5.9...

5.4

CVE-2024-0954

  • EPSS 0.15%
  • Published 05.02.2024 22:16:06
  • Last modified 21.11.2024 08:47:52

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting through editing context via the 'data-eael-wrapper-link' wrapper in all versions up ...

5.4

CVE-2024-0586

  • EPSS 0.14%
  • Published 05.02.2024 22:16:02
  • Last modified 21.11.2024 08:46:57

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Login/Register Element in all versions up to, and including, 5.9.4 due to in...

5.4

CVE-2024-0585

  • EPSS 0.17%
  • Published 05.02.2024 22:16:02
  • Last modified 21.11.2024 08:46:56

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Filterable Gallery widget in all versions up to, and including, 5.9...

5.4

CVE-2023-7044

  • EPSS 0.12%
  • Published 04.01.2024 10:15:11
  • Last modified 21.11.2024 08:45:06

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via custom ID in all versions up to, and including, 5.9.2 due to insufficient input ...

8.8

CVE-2023-32245

  • EPSS 0.15%
  • Published 18.11.2023 23:15:08
  • Last modified 21.11.2024 08:02:58

Cross-Site Request Forgery (CSRF) vulnerability in WPDeveloper Essential Addons for Elementor Pro.This issue affects Essential Addons for Elementor Pro: from n/a through 5.4.8.

6.1

CVE-2023-32241

  • EPSS 0.07%
  • Published 29.08.2023 21:15:09
  • Last modified 21.11.2024 08:02:57

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPDeveloper Essential Addons for Elementor Pro plugin <= 5.4.8 versions.

5.3

CVE-2023-3779

  • EPSS 0.22%
  • Published 20.07.2023 06:15:09
  • Last modified 21.11.2024 08:18:02

The Essential Addons For Elementor plugin for WordPress is vulnerable to unauthenticated API key disclosure in versions up to, and including, 5.8.1 due to the plugin adding the API key to the source code of any page running the MailChimp block. This ...