Magical Addons For Elementor Security Vulnerabilities and Issues — Magical Addons For Elementor CVE List

Lucene search

WpthemespaceMagical Addons For Elementor

8 matches found

CVE•added 2024/05/14 3:21 p.m.•57 views

CVE-2024-2923

The Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's text effect widget in all versions up to, and including, 1.1.37 due to insufficient input sanitization a...

6.4CVSS5.7AI score0.00225EPSS

CVE•added 2024/05/08 12:15 p.m.•46 views

CVE-2024-34547

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor alam Magical Addons For Elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through 1.1.34.

6.5CVSS6.6AI score0.00207EPSS

CVE•added 2024/07/22 11:15 a.m.•45 views

CVE-2024-38730

Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41.

6.4CVSS5.2AI score0.00056EPSS

CVE•added 2024/07/20 8:15 a.m.•42 views

CVE-2024-38681

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Noor alam Magical Addons For Elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through 1.1.41.

6.5CVSS6.5AI score0.00064EPSS

CVE•added 2024/06/06 4:15 a.m.•39 views

CVE-2024-5161

The Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and output es...

6.4CVSS5.5AI score0.0022EPSS

CVE•added 2024/11/04 2:15 p.m.•39 views

CVE-2024-51665

Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor allows Server Side Request Forgery.This issue affects Magical Addons For Elementor: from n/a through 1.2.1.

4.9CVSS4.8AI score0.24138EPSS

CVE•added 2024/11/09 12:15 p.m.•37 views

CVE-2024-10352

The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the get_content_type function in includes/widgets/content-reveal.php. This makes it possible for authenticated attackers, with Contributor-level acce...

4.3CVSS4.3AI score0.00072EPSS

CVE•added 2024/12/06 2:15 p.m.•37 views

CVE-2024-54212

6.5CVSS6.5AI score0.00034EPSS