Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 26 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-32430 WordPress PowerPack Addons for Elementor plugin <= 2.9.9 - Cross Site Scripting (XSS) vulnerability IdeaBox CreationsPowerPack Addons for Elementor 中危 -2026-03-13 11:42:18 Deep Dive
CVE-2026-2446 Powerpack for LearnDash < 1.3.0 - Unauthenticated Arbitrary Option Update UnknownPowerPack for LearnDash 超危 -2026-03-06 06:00:04 Deep Dive
CVE-2024-24844 WordPress PowerPack Pro for Elementor plugin <= 2.10.6 - Unauthenticated Plugin Settings Reset vulnerability IdeaBox CreationsPowerPack Pro for Elementor High 7.5 2025-12-23 12:06:05 Deep Dive
CVE-2025-8388 PowerPack Lite for Elementor <= 2.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting Via 'cursor_url' ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 6.4 2025-09-10 04:22:38 Deep Dive
CVE-2025-1512 PowerPack Elementor Addons (Free Widgets, Extensions and Templates) <= 2.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 6.4 2025-04-01 06:52:06 Deep Dive
CVE-2024-12239 PowerPack Lite for Beaver Builder <= 1.3.0.5 - Reflected Cross-Site Scripting via Navigate Parameter ideaboxcreationsPowerPack Lite for Beaver Builder Medium 6.1 2024-12-17 01:45:15 Deep Dive
CVE-2024-10692 PowerPack Elementor Addons (Free Widgets, Extensions and Templates) <= 2.8.1 - Authenticated (Contributor+) Post Disclosure ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 4.3 2024-12-06 08:24:58 Deep Dive
CVE-2024-43330 WordPress PowerPack for Beaver Builder plugin < 2.37.4 - Reflected Cross Site Scripting (XSS) vulnerability IdeaBox CreationsPowerPack for Beaver Builder High 7.1 2024-08-18 13:41:36 Deep Dive
CVE-2024-39633 WordPress PowerPack for Beaver Builder plugin <= 2.33.0 - Contributor+ Privilege Escalation vulnerability IdeaBoxPowerPack for Beaver Builder High 8.8 2024-08-01 20:34:56 Deep Dive
CVE-2024-39634 WordPress PowerPack Pro for Elementor plugin <= 2.10.14 - Contributor+ Privilege Escalation vulnerability IdeaBoxPowerPack Pro for Elementor High 8.8 2024-08-01 20:32:49 Deep Dive
CVE-2024-37409 WordPress PowerPack Lite for Beaver Builder plugin <= 1.3.0.4 - Cross Site Scripting (XSS) vulnerability IdeaBox CreationsPowerPack Lite for Beaver Builder Medium 5.9 2024-07-22 08:40:40 Deep Dive
CVE-2024-37410 WordPress PowerPack Lite for Beaver Builder plugin <= 1.3.0.3 - Local File Inclusion vulnerability IdeaBox CreationsPowerPack Lite for Beaver Builder Medium 4.9 2024-07-09 10:13:45 Deep Dive
CVE-2024-5787 PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Link Effects Widget ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 6.4 2024-06-13 05:34:46 Deep Dive
CVE-2024-3668 PowerPack Pro for Elementor <= 2.10.17 - Authenticated (Contributor+) Privilege Escalation PowerPackPowerPack Pro for Elementor High 8.8 2024-06-08 04:32:37 Deep Dive
CVE-2024-5327 PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.19 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 6.4 2024-05-30 06:48:08 Deep Dive
CVE-2024-2289 PowerPack Lite for Beaver Builder <= 1.3.0 - Authenticated(Contributor+) Stored Cross-Site Scripting via element link ideaboxcreationsPowerPack Lite for Beaver Builder Medium 6.4 2024-04-09 18:59:11 Deep Dive
CVE-2024-2492 PowerPack Addons for Elementor <= 2.7.18 - Authenticated (Contributor+) Stored Cross-Site Scripting via Twitter Tweet Widget ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 6.4 2024-04-09 18:58:34 Deep Dive
CVE-2024-2491 PowerPack Addons for Elementor <= 2.7.17 - Authenticated (Contributor+) Stored Cross-Site Scripting via *_html_tag* ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 6.4 2024-03-30 09:37:30 Deep Dive
CVE-2024-24843 WordPress PowerPack Pro for Elementor Plugin < 2.10.8 is vulnerable to Cross Site Request Forgery (CSRF) PowerPack Addons for ElementorPowerPack Pro for Elementor High 7.1 2024-02-21 07:07:56 Deep Dive
CVE-2024-1411 PowerPack Addons for Elementor <= 2.7.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Twitter Buttons Widget ideaboxcreationsPowerPack Addons for Elementor (Free Widgets, Extensions and Templates) Medium 6.4 2024-02-20 18:56:33 Deep Dive