Vulnerability Platform

Vulnerability List

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2026-2486	Master Addons For Elementor <= 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'ma_el_bh_table_btn_text'	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	6.4	2026-02-20 11:26:37	Deep Dive
CVE-2025-5092	Multiple Plugins and Themes <= (Various Versions) - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via lightGallery JavaScript Library	lightgalleryteam	LightGallery WP	Medium	6.4	2025-11-20 06:38:42	Deep Dive
CVE-2025-10896	Multiple Plugins <= Multiple Versions - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Upload	litonice13	Image Comparison Addon for Elementor	High	8.8	2025-11-04 04:27:13	Deep Dive
CVE-2025-57939	WordPress Image Hover Effects – Elementor Addon Plugin <= 1.4.4 - Broken Access Control Vulnerability	Blocksera	Image Hover Effects – Elementor Addon	Medium	5.3	2025-09-22 18:25:00	Deep Dive
CVE-2025-8874	Master Addons – Elementor Addons with White Label, Free Widgets, Hover Effects, Conditions, & Animations <= 2.0.8.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via fancyBox	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	6.4	2025-08-12 06:42:41	Deep Dive
CVE-2025-5284	Master Addons – Elementor Addons with White Label, Free Widgets, Hover Effects, Conditions, & Animations <= 2.0.8.2 - Authenticated (Contributor+) Stored Cross-Site Scripting	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	6.4	2025-07-16 09:22:56	Deep Dive
CVE-2025-53258	WordPress Hover Effects plugin <= 2.1.2 - SQL Injection Vulnerability	Wow-Company	Hover Effects	High	7.6	2025-06-27 13:21:06	Deep Dive
CVE-2025-31025	WordPress Image Hover Effects Block plugin <= 1.4.5 - Cross Site Scripting (XSS) Vulnerability	Blocksera	Image Hover Effects Block	Medium	6.5	2025-06-06 12:53:59	Deep Dive
CVE-2025-46484	WordPress Image Hover Effects For WPBakery Page Builder plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability	nasir179125	Image Hover Effects For WPBakery Page Builder	Medium	6.5	2025-04-24 16:08:50	Deep Dive
CVE-2025-0433	Master Addons <= 2.0.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	6.4	2025-03-04 08:23:43	Deep Dive
CVE-2024-9618	Master Addons <= 2.0.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	6.4	2025-03-04 08:23:42	Deep Dive
CVE-2025-22585	WordPress Ultimate Image Hover Effects plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability	themebon	Ultimate Image Hover Effects	Medium	6.5	2025-01-07 14:57:04	Deep Dive
CVE-2025-22323	WordPress Image Hover Effects for Elementor plugin <= 1.0.2.4 - Cross Site Scripting (XSS) vulnerability	Liton Arefin	Image Hover Effects for Elementor	Medium	6.5	2025-01-07 10:48:51	Deep Dive
CVE-2024-9502	Master Addons -- Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor <= 2.0.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tooltip Module	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	6.4	2025-01-07 06:40:57	Deep Dive
CVE-2022-4974	Freemius SDK <= 2.4.2 - Missing Authorization Checks	dashlabsltd	YASR – Yet Another Star Rating Plugin for WordPress	Medium	6.3	2024-10-16 06:43:30	Deep Dive
CVE-2024-6282	Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor <= 2.0.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via data-jltma-wrapper-link Element	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	5.4	2024-09-10 11:30:31	Deep Dive
CVE-2024-38741	WordPress Amazing Hover Effects plugin <= 2.4.9 - Cross Site Scripting (XSS) vulnerability	Noor-E-Alam	Amazing Hover Effects	Medium	6.5	2024-07-20 07:15:13	Deep Dive
CVE-2024-4780	Image Hover Effects – Elementor Addon <= 1.4.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via eihe_link Parameter	blocksera	Image Hover Effects – Elementor Addon	Medium	6.4	2024-07-16 06:43:33	Deep Dive
CVE-2024-37546	WordPress Image Hover Effects for Elementor with Lightbox and Flipbox plugin <= 3.0.2 - Cross Site Scripting (XSS) vulnerability	biplob018	Image Hover Effects - Caption Hover with Carousel	Medium	6.5	2024-07-06 14:29:20	Deep Dive
CVE-2024-5382	Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor <= 2.0.6.1 - Missing Authorization to MA Template Creation or Modification	litonice13	Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits	Medium	6.5	2024-06-07 12:33:44	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List