Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 30 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-2600 ElementsKit Elementor Addons and Templates <= 3.7.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Simple Tab Widget roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 6.4 2026-04-04 07:41:58 Deep Dive
CVE-2026-23693 ElementsKit Elementor Addons < 3.7.9 Unauthenticated Mailchimp REST Endpoint RoxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Critical 10.0 2026-02-23 20:33:55 Deep Dive
CVE-2025-3614 ElementsKit Elementor Addons and Templates <= 3.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Widget roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 6.4 2025-07-24 22:23:37 Deep Dive
CVE-2025-4479 ElementsKit Lite <= 3.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison Widget roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 6.4 2025-06-19 03:40:14 Deep Dive
CVE-2024-11180 ElementsKit Elementor addons <= 3.4.7 - Authenticated (Contributor+) Stored Cross-Site Scripting roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 6.4 2025-03-29 07:23:45 Deep Dive
CVE-2025-0968 ElementsKit Elementor addons <= 3.4.0 - Unauthenticated Information Exposure via get_megamenu_content Function roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 5.3 2025-02-19 11:10:39 Deep Dive
CVE-2025-1005 ElementsKit Elementor addons <= 3.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Accordion Widget roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 6.4 2025-02-15 09:24:22 Deep Dive
CVE-2025-0321 ElementsKit Pro <= 3.7.8 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via url Parameter wpmetElementsKit Pro Medium 6.4 2025-01-28 07:21:41 Deep Dive
CVE-2024-37255 WordPress ElementsKit Lite plugin <= 3.1.4 - Unauthenticated Broken Access Control vulnerability RoxnorElementsKit Elementor addons Lite Medium 5.3 2024-11-01 14:18:29 Deep Dive
CVE-2024-10091 ElementsKit Elementor addons <= 3.2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison Widget roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 6.4 2024-10-26 02:31:31 Deep Dive
CVE-2024-8546 ElementsKit Elementor addons <= 3.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Video Widget roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 6.4 2024-09-25 12:44:13 Deep Dive
CVE-2024-43996 WordPress ElementsKit Pro plugin <= 3.6.0 - Local File Inclusion vulnerability ElementsKitElementsKit Pro Medium 6.5 2024-09-23 00:01:27 Deep Dive
CVE-2024-7063 ElementsKit Pro <= 3.6.6 - Authenticated (Contributor+) Sensitive Information Exposure wpmetElementsKit Pro Medium 4.3 2024-08-15 05:30:56 Deep Dive
CVE-2024-7064 ElementsKit Pro <= 3.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting wpmetElementsKit Pro Medium 6.4 2024-08-15 05:30:55 Deep Dive
CVE-2024-6455 ElementsKit Elementor addons <= 3.2.0 - Unauthenticated Information Exposure via ekit_widgetarea_content Function roxnorElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Medium 5.3 2024-07-18 20:32:38 Deep Dive
CVE-2024-5263 ElementsKit Elementor addons and Templates Library <= 3.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Motion Text and Table Widgets wpmetElementsKit Pro Medium 6.4 2024-06-15 02:01:58 Deep Dive
CVE-2024-4404 ElementsKit PRO <= 3.6.1 - Authenticated (Contributor+) Server-Side Request Forgery wpmetElementsKit Pro High 8.5 2024-06-14 05:39:15 Deep Dive
CVE-2024-4452 ElementsKit Pro <= 3.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting wpmetElementsKit Pro Medium 6.4 2024-05-21 13:51:51 Deep Dive
CVE-2024-3500 ElementsKit Pro <= 3.6.0 - Authenticated (Contributor+) Local File Inclusion via Price Menu, Hotspot, and Advanced Toggle Widgets wpmetElementsKit Pro High 8.8 2024-05-02 16:52:38 Deep Dive
CVE-2024-3650 WordPress plugin ElementsKit Elementor addons 安全漏洞 xpeedstudioElementsKit Elementor addons and Templates Library Medium 6.4 2024-05-02 16:52:26 Deep Dive