CVE-2026-32372

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder allows Retrieve Embedded Sensitive Data.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through =...

CVE-2026-32372

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder allows Retrieve Embedded Sensitive Data.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through =...

WordPress plugin ShopBuilder – Elementor WooCommerce Builder Addons 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application add-on. There is a...

CVE-2026-27376

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JanStudio Claue - Clean, Minimal Elementor WooCommerce Theme claue allows Reflected XSS.This issue affects Claue - Clean, Minimal Elementor WooCommerce Theme: from n/a through = 2.2.7...

EUVD-2024-36728

Malicious code in bioql PyPI...

EUVD-2024-35077

Malicious code in bioql PyPI...

CVE-2025-10173 ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution <= 4.8.3 - Insufficient Authorization to Authenticated (Editor+) Settings Update

The ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution plugin for WordPress is vulnerable to unauthorized access due to an incorrect capability check on the postsave function in all versions up to, and including, 4.8.3. This makes it possible for authenticated...

CVE-2024-37520

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.12...

CVE-2024-13797

The PressMart - Modern Elementor WooCommerce WordPress Theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.2.16. This is due to the software allowing users to execute an action that does not properly validate a value before running...

WordPress Unlimited Theme Addon For Elementor and WooCommerce plugin <= 1.2.1 - Authenticated (Contributor+) Post Disclosure vulnerability

Authenticated Contributor+ Post Disclosure vulnerability discovered by Francesco Carlucci in WordPress Plugin Unlimited Theme Addon For Elementor and WooCommerce versions = 1.2.1...

CVE-2024-37520

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.12...

CVE-2024-37520

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons allows Path Traversal.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through 2.1.12...

CVE-2024-37520

CVE-2024-37520 describes a path traversal (local file inclusion) vulnerability in the ShopBuilder – Elementor WooCommerce Builder Addons WordPress plugin. The flaw affects ShopBuilder versions n/a through 2.1.12 and is listed as an authenticated (Contributor+) issue with LFI via improper pathname...

WordPress ShopBuilder – Elementor WooCommerce Builder Addons plugin <= 2.1.12 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin ShopBuilder – Elementor WooCommerce Builder Addons versions = 2.1.12...

CVE-2024-34812 WordPress ShopBuilder plugin <= 2.1.8 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.8...

CVE-2024-34812

CVE-2024-34812 concerns Exposure of Sensitive Information to an Unauthorized Actor in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons. Affected product: ShopBuilder – Elementor WooCommerce Builder Addons (RadiusTheme) with versions from n/a through 2.1.8. Documented impact: informa...

PT-2024-26208 · Radiustheme · Radiustheme Shopbuilder – Elementor Woocommerce Builder Addons

Name of the Vulnerable Software and Affected Versions: RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons versions prior to 2.1.9 Description: The issue is related to Exposure of Sensitive Information to an Unauthorized Actor. There is no information provided about the estimated numbe...

WordPress ShopBuilder – Elementor WooCommerce Builder Addons Plugin <= 2.1.8 is vulnerable to Sensitive Data Exposure

Software ShopBuilder – Elementor WooCommerce Builder Addons Type Plugin Vulnerable versions = 2.1.8 Fixed in 2.1.9 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-34812 Patch priority Low CVSS severity Low 5.3 Developer Mamunur Rashid PSID 3f187cb1d98a...