The Plus Addons For Elementor Security Vulnerabilities and Issues — The Plus Addons For Elementor CVE List

Lucene search

PosimythThe Plus Addons For Elementor

3 matches found

CVE•added 2024/03/27 3:15 a.m.•51 views

CVE-2024-2210

The The Plus Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.4.1 via the Team Member Listing widget. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrary ...

6.4CVSS7.5AI score0.00091EPSS

CVE•added 2024/03/27 3:15 a.m.•48 views

CVE-2024-2203

The The Plus Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.4.1 via the Clients widget. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrary files on the...

8.8CVSS7.5AI score0.00313EPSS

CVE•added 2024/03/07 7:15 a.m.•46 views

CVE-2024-1419

The The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ attribute of the Header Meta Content widget in all versions up to, and including, 5.4.0 due to insufficient input sanitization and output escaping. This makes it possible for authentica...

6.4CVSS6.1AI score0.00168EPSS