7 matches found
CVE-2024-32718
The Pack Elementor addons (Header Footer & WooCommerce Builder, Template Library)
CVE-2024-32785
CVE-2024-32785: CSRF vulnerability in Webangon The Pack Elementor addons enables Cross-Site Scripting (XSS) and affects The Pack Elementor addons up to version 2.0.8.3. Public details in the connected docs confirm the issue and affected range; no exploit details are provided. Remediation: upgrade...
CVE-2024-50453
CVE-2024-50453 is a Relative Path Traversal vulnerability in the WordPress plugin family The Pack Elementor addons. Affected versions are listed as from n/a through 2.0.9. The underlying issue enables PHP Local File Inclusion, which could allow an attacker to access restricted files on the server...
CVE-2024-38768
CVE-2024-38768 is a path traversal/ Local File Inclusion vulnerability in The Pack Elementor addons (WordPress). Affected versions are The Pack Elementor addons up to 2.0.8.6. The issue stems from improper limitation of a pathname to a restricted directory. PatchStack and related sources indicate...
CVE-2024-52356
CVE-2024-52356 is a stored Cross-Site Scripting (XSS) vulnerability affecting The Pack Elementor addons (Header Footer & WooCommerce Builder, Template Library) with affected versions up to 2.1.0. The issue arises from improper input neutralization during web page generation, enabling stored XSS p...
CVE-2024-47383
CVE-2024-47383 corresponds to a stored XSS in the WordPress The Pack Elementor addons (Header Footer & WooCommerce Builder, Template Library) up to version 2.0.8.8. The vulnerability arises from improper neutralization of input during web page generation. The Patchstack entry documents a fix in v...
CVE-2025-6550
CVE-2025-6550 concerns The Pack Elementor addon for WordPress (v