Lucene search

K
WpdeveloperEssential Addons For Elementor

6 matches found

CVE
CVE
added 2025/06/07 12:15 p.m.77 views

CVE-2024-9993

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eael_event_details_text parameter of Event Calendar Widget in all versions up to, and including, 6.1.12 due to insuffi...

6.4CVSS5.7AI score0.00034EPSS
CVE
CVE
added 2025/06/07 12:15 p.m.75 views

CVE-2024-9994

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eael_pricing_item_tooltip_content parameter of the Pricing Table Widget in all versions up to, and including, 6.1.12 d...

6.4CVSS5.7AI score0.00034EPSS
CVE
CVE
added 2025/04/17 4:15 p.m.55 views

CVE-2025-24752

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Reflected XSS. This issue affects Essential Addons for Elementor: from n/a through 6.0.14.

7.1CVSS7AI score0.02842EPSS
CVE
CVE
added 2025/04/16 1:15 p.m.44 views

CVE-2025-39589

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper Essential Addons for Elementor allows Retrieve Embedded Sensitive Data. This issue affects Essential Addons for Elementor: from n/a through 6.1.9.

4.3CVSS4.6AI score0.00041EPSS
CVE
CVE
added 2025/04/16 1:15 p.m.44 views

CVE-2025-39590

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS. This issue affects Essential Addons for Elementor: from n/a through 6.1.9.

6.5CVSS6.4AI score0.00045EPSS
CVE
CVE
added 2025/07/08 3:15 a.m.14 views

CVE-2025-6244

The Essential Addons for Elementor – Popular Elementor Templates and Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the via Calendar And Business Reviews Widgets attributes in all versions up to, and including, 6.1.19 due to insufficient input sanitization and output ...

6.4CVSS5.6AI score0.00029EPSS