Brainstormforce

Ultimate Addons For Elementor

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2025-8488

  • EPSS 0.04%
  • Veröffentlicht 02.08.2025 09:23:31
  • Zuletzt bearbeitet 04.08.2025 15:06:15

The Ultimate Addons for Elementor (Formerly Elementor Header & Footer Builder) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_hfe_compatibility_option_callback ()function in all v...

8.8

CVE-2024-37455

  • EPSS 0.46%
  • Veröffentlicht 09.07.2024 11:15:15
  • Zuletzt bearbeitet 21.11.2024 09:23:52

Improper Privilege Management vulnerability in Brainstorm Force Ultimate Addons for Elementor allows Privilege Escalation.This issue affects Ultimate Addons for Elementor: from n/a through 1.36.31.

8.8

CVE-2023-50890

  • EPSS 0.17%
  • Veröffentlicht 17.05.2024 09:15:15
  • Zuletzt bearbeitet 21.11.2024 08:37:28

Improper Privilege Management vulnerability in Brainstorm Force Ultimate Addons for Elementor allows Privilege Escalation.This issue affects Ultimate Addons for Elementor: from n/a through 1.36.20.

5.4

CVE-2021-24271

  • EPSS 0.22%
  • Veröffentlicht 05.05.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 05:52:43

The “Ultimate Addons for Elementor” WordPress Plugin before 1.30.0 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.

6.5

CVE-2020-13125

  • EPSS 9.01%
  • Veröffentlicht 17.05.2020 01:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:42

An issue was discovered in the "Ultimate Addons for Elementor" plugin before 1.24.2 for WordPress, as exploited in the wild in May 2020 in conjunction with CVE-2020-13126. Unauthenticated attackers can create users with the Subscriber role even if re...