10 matches found
CVE-2025-69312
Unrestricted Upload of File with Dangerous Type vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows Upload a Web Shell to a Web Server.This issue affects Xpro Elementor Addons: from n/a through = 1.4.19.1...
CVE-2025-69312
CVE-2025-69312 describes an Unrestricted Upload of File with Dangerous Type in Xpro Elementor Addons (Xpro Addons, 140+ Widgets for Elementor). The flaw allows uploading a Web Shell to the web server, affecting Xpro Elementor Addons versions up to and including 1.4.19.1 (vendor n/a). The issueβs ...
CVE-2025-69312
Unrestricted Upload of File with Dangerous Type vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows Upload a Web Shell to a Web Server.This issue affects Xpro Elementor Addons: from n/a through = 1.4.19.1...
WordPress Xpro Elementor Addons plugin <= 1.4.19.1 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by Mdr in WordPress Plugin Xpro Elementor Addons versions = 1.4.19.1...
EUVD-2025-201983
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows DOM-Based XSS.This issue affects Xpro Elementor Addons: from n/a through = 1.4.19.1...
CVE-2025-63044
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows DOM-Based XSS.This issue affects Xpro Elementor Addons: from n/a through = 1.4.19.1...
CVE-2025-63044
CVE-2025-63044 concerns the WordPress plugin Xpro Addons β 140+ Widgets for Elementor (Xpro Elementor Addons) up to version β€ 1.4.19.1. The issue is a DOM-based Cross-Site Scripting (XSS) caused by improper input neutralization during web page generation. The vulnerability affects the plugin in W...
CVE-2025-63044 WordPress Xpro Elementor Addons plugin <= 1.4.19.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows DOM-Based XSS.This issue affects Xpro Elementor Addons: from n/a through = 1.4.19.1...
PT-2025-50046
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows DOM-Based XSS.This issue affects Xpro Elementor Addons: from n/a through = 1.4.19.1...
WordPress Xpro Elementor Addons plugin <= 1.4.19.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Abu Hurayra in WordPress Plugin Xpro Elementor Addons versions = 1.4.19.1...