3 matches found
CVE-2020-13125
The CVE-2020-13125 entry concerns the Ultimate Addons for Elementor WordPress plugin (
CVE-2021-24271
CVE-2021-24271 affects the WordPress plugin Ultimate Addons for Elementor (before 1.30.0). The vulnerability is a stored XSS in several widgets, exploitable by lower-privileged users (e.g., contributors) via a similar method. Connected sources confirm the affected version and context; the advisor...
CVE-2024-37455
CVE-2024-37455 affects Ultimate Addons for Elementor. The issue is an Improper Privilege Management that enables privilege escalation in versions up to 1.36.31. Connected sources indicate the vulnerability existed and has been marked as patched; remediation is to upgrade to a patched version (exa...