4 matches found
CVE-2026-39500
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themesflat themesflat-addons-for-elementor themesflat-addons-for-elementor allows Stored XSS.This issue affects themesflat-addons-for-elementor: from n/a through = 2.3.2...
CVE-2025-3275
CVE-2025-3275 affects the Themesflat Addons For Elementor plugin for WordPress. It allows Stored Cross-Site Scripting via the TF E Slider widget in all versions up to and including 2.2.5. Exploitation requires authentication at Contributor level or higher, and scripts execute when a user loads an...
WordPress Themesflat Addons For Elementor plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Prissy in WordPress Plugin themesflat-addons-for-elementor versions = 2.3.1...
CVE-2024-49310
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themesflat themesflat-addons-for-elementor themesflat-addons-for-elementor allows Stored XSS.This issue affects themesflat-addons-for-elementor: from n/a through = 2.2.0...