295 matches found
CVE-2024-2785
The The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Age Gate widget in all versions up to, and including, 5.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
WordPress plugin The Plus Addons for Elementor Pro 安全漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A security vulnerability exists ...
PT-2026-1652
Name of the Vulnerable Software and Affected Versions The Plus Addons for Elementor Pro versions prior to 6.3.7 Description An incorrect access control configuration can lead to unauthorized access. The issue concerns The Plus Addons for Elementor Pro. Recommendations Update The Plus Addons for...
CVE-2024-23511
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows DOM-Based XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.3.3...
CVE-2024-23511
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows DOM-Based XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.3.3...
CVE-2024-23511 WordPress The Plus Addons for Elementor plugin <= 5.3.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows DOM-Based XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.3.3...
CVE-2024-23511 WordPress The Plus Addons for Elementor plugin <= 5.3.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows DOM-Based XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.3.3...
EUVD-2024-21006
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows DOM-Based XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.3.3...
WordPress plugin The Plus Addons for Elementor Page Builder Lite 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...
PT-2026-1283
Name of the Vulnerable Software and Affected Versions The Plus Addons for Elementor Page Builder Lite versions through 5.3.3 Description The Plus Addons for Elementor Page Builder Lite is susceptible to a DOM-Based Cross-site Scripting issue due to improper input neutralization during web page...
CVE-2025-9698
The Plus Addons for Elementor WordPress plugin before 6.3.16 does not sanitize SVG file contents, which could allow users with minimum role access as Author to perform Stored Cross-Site Scripting attacks...
WordPress The Plus Addons for Elementor plugin < 6.3.16 - Author+ Stored XSS vulnerability
Author+ Stored XSS vulnerability discovered by Tan Nguyen in WordPress Plugin The Plus Addons for Elementor Page Builder Lite versions 6.3.16...
EUVD-2025-33964
The Plus Addons for Elementor WordPress plugin before 6.3.16 does not sanitize SVG file contents, which could allow users with minimum role access as Author to perform Stored Cross-Site Scripting attacks...
CVE-2025-9698
CVE-2025-9698 refers to The Plus Addons for Elementor WordPress plugin. The vulnerability is a Stored Cross-Site Scripting (XSS) caused by unsanitized SVG file contents, exploitable by an Author+ (minimum Author) with SVG content uploaded or processed. Affected versions are before 6.3.16; remedia...
PT-2025-41756
Name of the Vulnerable Software and Affected Versions Plus Addons for Elementor versions prior to 6.3.16 Description The Plus Addons for Elementor WordPress plugin does not properly sanitize SVG file contents. This could allow users with Author-level access or higher to execute Stored Cross-Site...
WordPress plugin The Plus Addons for Elementor 安全漏洞
WordPress The Plus Addons for Elementor plugin is a plugin designed specifically for the Elementor page builder, offering over 120 custom widgets and extensions and more than 1000 pre-designed templates. A cross-site scripting vulnerability exists in WordPress The Plus Addons for Elementor plugin...
EUVD-2021-11860
Malware in sbrugna...
EUVD-2021-11861
Malware in sbrugna...
EUVD-2024-44096
Malicious code in bioql PyPI...
EUVD-2024-46566
Malicious code in bioql PyPI...