Lucene search

Essential Addons For Elementor Security Vulnerabilities - 2023

cve

CVE-2023-32241

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPDeveloper Essential Addons for Elementor Pro plugin <= 5.4.8 versions.

7.1CVSS

6AI Score

0.001EPSS

2023-08-29 09:15 PM

cve

CVE-2023-32243

Improper Authentication vulnerability in WPDeveloper Essential Addons for Elementor allows Privilege Escalation. This issue affects Essential Addons for Elementor: from 5.4.0 through 5.7.1.

9.8CVSS

9.4AI Score

0.113EPSS

2023-05-12 08:15 AM

455

In Wild

cve

CVE-2023-32245

Cross-Site Request Forgery (CSRF) vulnerability in WPDeveloper Essential Addons for Elementor Pro.This issue affects Essential Addons for Elementor Pro: from n/a through 5.4.8.

8.8CVSS

8.7AI Score

0.001EPSS

2023-11-18 11:15 PM

cve

CVE-2023-3779

The Essential Addons For Elementor plugin for WordPress is vulnerable to unauthenticated API key disclosure in versions up to, and including, 5.8.1 due to the plugin adding the API key to the source code of any page running the MailChimp block. This makes it possible for unauthenticated attackers t...

5.3CVSS

5.7AI Score

0.001EPSS

2023-07-20 06:15 AM

2473