| CVE-2024-51588 | WordPress Super Addons for Elementor plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability | riponhossain | Super Addons for Elementor | Medium | 6.5 | 2024-11-09 14:52:56 | Deep Dive |
| CVE-2024-51590 | WordPress Hoo Addons for Elementor plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability | HooThemes | Hoo Addons for Elementor | Medium | 6.5 | 2024-11-09 14:50:58 | Deep Dive |
| CVE-2024-51597 | WordPress ThemeShark Templates & Widgets for Elementor plugin <= 1.1.7 - Stored Cross Site Scripting (XSS) vulnerability | themeshark | ThemeShark Templates & Widgets for Elementor | Medium | 6.5 | 2024-11-09 14:33:59 | Deep Dive |
| CVE-2024-51629 | WordPress Header Footer Composer for Elementor plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability | MetricThemes | Header Footer Composer for Elementor | Medium | 6.5 | 2024-11-09 13:39:49 | Deep Dive |
| CVE-2024-51662 | WordPress Black Widgets For Elementor plugin <= 1.3.6 - Cross Site Scripting (XSS) vulnerability | Modernaweb Studio | Black Widgets For Elementor | Medium | 6.5 | 2024-11-09 13:12:56 | Deep Dive |
| CVE-2024-51674 | WordPress Sastra Essential Addons for Elementor plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability | Fast Themes | Sastra Essential Addons for Elementor | Medium | 6.5 | 2024-11-09 13:02:39 | Deep Dive |
| CVE-2024-51675 | WordPress aThemes Addons for Elementor plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability | Syed Balkhi | aThemes Addons for Elementor | Medium | 6.5 | 2024-11-09 13:01:43 | Deep Dive |
| CVE-2024-10352 | Magical Addons For Elementor <= 1.2.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template | nalam-1 | Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) | Medium | 4.3 | 2024-11-09 11:38:26 | Deep Dive |
| CVE-2024-51787 | WordPress ElementsReady Addons for Elementor plugin <= 6.4.3 - Cross Site Scripting (XSS) vulnerability | quomodosoft | ElementsReady Addons for Elementor | Medium | 6.5 | 2024-11-09 08:22:06 | Deep Dive |
| CVE-2024-10693 | SKT Addons for Elementor <= 3.3 - Authenticated (Contributor+) Post Disclosure | sonalsinha21 | SKT Addons for Elementor | Medium | 4.3 | 2024-11-09 03:30:48 | Deep Dive |
| CVE-2024-8960 | Cowidgets – Elementor Addons <= 1.2.0 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | codelessthemes | Cowidgets – Elementor Addons | Medium | 6.4 | 2024-11-09 02:32:04 | Deep Dive |
| CVE-2024-10779 | Cowidgets – Elementor Addons <= 1.2.0 - Authenticated (Contributor+) Post Disclosure | codelessthemes | Cowidgets – Elementor Addons | Medium | 5.3 | 2024-11-09 02:32:04 | Deep Dive |
| CVE-2024-10325 | Elementor Header & Footer Builder <= 1.6.45 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | brainstormforce | Ultimate Addons for Elementor | Medium | 6.4 | 2024-11-08 11:31:07 | Deep Dive |
| CVE-2024-8442 | Prime Slider - Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider <= 3.15.18 - Authenticated (Contributor+) Stored Cross-Site Scripting via Blog Widget | bdthemes | Prime Slider – Addons for Elementor | Medium | 6.4 | 2024-11-07 12:30:53 | Deep Dive |
| CVE-2024-6626 | EleForms – All In One Form Integration including DB for Elementor <= 2.9.9.9 - Missing Authorization | cscode | EleForms – All In One Form Integration including DB for Elementor | Medium | 5.3 | 2024-11-06 06:43:32 | Deep Dive |
| CVE-2024-10329 | Ultimate Bootstrap Elements for Elementor <= 1.4.6 - Authenticated (Contributor+) Sensitive Information Exposure | g5theme | Ultimate Bootstrap Elements for Elementor | Medium | 4.3 | 2024-11-05 13:55:29 | Deep Dive |
| CVE-2024-9867 | Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.10.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Open Map Widget | bdthemes | Element Pack – Widgets, Templates & Addons for Elementor | Medium | 5.4 | 2024-11-05 11:32:22 | Deep Dive |
| CVE-2024-9657 | Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.10.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting | bdthemes | Element Pack – Widgets, Templates & Addons for Elementor | Medium | 6.5 | 2024-11-05 11:32:21 | Deep Dive |
| CVE-2024-10319 | 140+ Widgets | Xpro Addons For Elementor – FREE <= 1.4.6 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template | xpro | Xpro Addons — 140+ Widgets for Elementor | Medium | 4.3 | 2024-11-05 11:00:48 | Deep Dive |
| CVE-2024-51680 | WordPress Cresta Addons for Elementor plugin <= 1.0.9 - Stored Cross Site Scripting (XSS) vulnerability | CrestaProject | Cresta Addons for Elementor | Medium | 6.5 | 2024-11-04 14:14:25 | Deep Dive |