Lucene search
K

258 matches found

CVE
CVE
added 2025/10/06 6:0 a.m.21 views

CVE-2025-9703

CVE-2025-9703 describes a Cross-Site Scripting vulnerability in The Ultimate Addons for Elementor (Lite and related) WordPress plugin prior to version 2.5.0. The issue arises because SVG file contents uploaded via the xmlrpc.php endpoint using base64 encoding are not sanitized, allowing injection...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/06 12:0 a.m.10 views

PT-2025-40853

Name of the Vulnerable Software and Affected Versions The Ultimate Addons for Elementor Formerly Elementor Header & Footer Builder versions prior to 2.5.0 Description The software does not properly sanitize SVG file contents when uploaded. This occurs when using the xmlrpc.php endpoint with base6...

4.3CVSS6AI score0.00165EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.3 views

WordPress plugin The Ultimate Addons for Elementor 安全漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security vulnerability exists in t...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-27965

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00321EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-56119

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00547EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-34908

Malicious code in bioql PyPI...

7.1CVSS7AI score0.0033EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-36676

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00483EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-34910

Malicious code in bioql PyPI...

8.5CVSS8.7AI score0.00625EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-53689

Malicious code in bioql PyPI...

7.1CVSS7.1AI score0.00403EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-27106

Malicious code in bioql PyPI...

6.4CVSS8.7AI score0.00433EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-40078

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00246EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-50454

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0031EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-56123

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00222EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-56122

Malicious code in bioql PyPI...

6.5CVSS9.1AI score0.00562EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-50448

Malicious code in bioql PyPI...

7.1CVSS9.1AI score0.00507EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-55623

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00547EPSS
Exploits0References1
NVD
NVD
added 2025/08/02 10:15 a.m.6 views

CVE-2025-8488

The Ultimate Addons for Elementor Formerly Elementor Header & Footer Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the savehfecompatibilityoptioncallback function in all versions up to, and including, 2.4.6. This makes it...

4.3CVSS0.00227EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/02 9:23 a.m.11 views

CVE-2025-8488 Ultimate Addons for Elementor (Formerly Elementor Header & Footer Builder) <= 2.4.6 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update

The Ultimate Addons for Elementor Formerly Elementor Header & Footer Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the savehfecompatibilityoptioncallback function in all versions up to, and including, 2.4.6. This makes it...

4.3CVSS0.00227EPSS
Exploits0References3
CVE
CVE
added 2025/08/02 9:23 a.m.27 views

CVE-2025-8488

CVE-2025-8488 affects Ultimate Addons for Elementor (formerly Elementor Header & Footer Builder) for WordPress, with versions up to 2.4.6 vulnerable due to a missing capability check in the save_hfe_compatibility_option_callback() function. This enables authenticated attackers with Subscriber-lev...

4.3CVSS6.1AI score0.00227EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/02 12:0 a.m.5 views

WordPress plugin Ultimate Addons for Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS6.3AI score0.00227EPSS
Exploits0References4
Rows per page
Query Builder