Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 33 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-1572 Livemesh Addons by Elementor <= 9.0 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting via Plugin Settings livemeshLivemesh Addons by Elementor Medium 6.4 2026-04-16 06:44:51 Deep Dive
CVE-2026-1620 Livemesh Addons by Elementor <= 9.0 - Authenticated (Contributor+) Local File Inclusion via Widget Template Parameter livemeshLivemesh Addons by Elementor High 8.8 2026-04-16 06:44:50 Deep Dive
CVE-2026-39636 WordPress Livemesh Addons for Elementor plugin <= 9.0 - Cross Site Scripting (XSS) vulnerability livemeshLivemesh Addons for Elementor--2026-04-08 08:30:30 Deep Dive
CVE-2026-2029 Livemesh Addons for Beaver Builder <= 3.9.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'title' and 'value' Shortcode Attributes livemeshLivemesh Addons for Beaver Builder Medium 6.4 2026-02-26 01:24:15 Deep Dive
CVE-2026-24594 WordPress Livemesh Addons for WPBakery Page Builder plugin <= 3.9.4 - Cross Site Scripting (XSS) vulnerability livemeshLivemesh Addons for WPBakery Page Builder Medium 5.9 2026-01-23 14:29:02 Deep Dive
CVE-2025-62990 WordPress Livemesh Addons for Beaver Builder plugin <= 3.9.2 - Cross Site Scripting (XSS) vulnerability livemeshLivemesh Addons for Beaver Builder Medium 6.5 2025-12-31 12:57:23 Deep Dive
CVE-2025-8780 Livemesh SiteOrigin Widgets <= 3.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Hero Header and Pricing Table Widgets livemeshLivemesh SiteOrigin Widgets Medium 6.4 2025-12-13 08:21:16 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-8858 Elementor Addons by Livemesh <= 8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via piechart_settings Parameter livemeshLivemesh Addons by Elementor Medium 6.4 2024-09-25 10:59:52 Deep Dive
CVE-2024-47303 WordPress Elementor Addons by Livemesh plugin <= 8.5 - Cross Site Scripting (XSS) vulnerability livemeshLivemesh Addons for Elementor Medium 6.5 2024-09-25 08:01:35 Deep Dive
CVE-2024-43320 WordPress WPBakery Page Builder Addons plugin <= 3.9 - Cross Site Scripting (XSS) vulnerability LivemeshLivemesh Addons for WPBakery Page Builder Medium 6.5 2024-08-18 14:15:03 Deep Dive
CVE-2024-38784 WordPress Livemesh Addons for Beaver Builder plugin <= 3.6.1 - Cross Site Scripting (XSS) vulnerability LivemeshLivemesh Addons for Beaver Builder Medium 5.9 2024-07-21 21:11:55 Deep Dive
CVE-2024-37547 WordPress Elementor Addons by Livemesh plugin <= 8.4.0 - Local File Inclusion vulnerability LivemeshLivemesh Addons for Elementor Medium 6.5 2024-07-06 14:39:52 Deep Dive
CVE-2024-3639 Elementor Addons by Livemesh <= 8.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Posts Grid livemeshLivemesh Addons by Elementor Medium 6.4 2024-07-04 03:32:25 Deep Dive
CVE-2024-2926 Elementor Addons by Livemesh <= 8.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Various Widgets livemeshLivemesh Addons by Elementor Medium 6.4 2024-07-04 03:32:24 Deep Dive
CVE-2024-2385 Elementor Addons by Livemesh <= 8.4 - Authenticated (Contributor+) Limited Local File Inclusion via Widgets livemeshLivemesh Addons by Elementor High 8.8 2024-07-04 03:32:23 Deep Dive
CVE-2024-3638 Elementor Addons by Livemesh <= 8.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Marquee Text Widget, Testimonials Widget, and Testimonial Slider Widgets livemeshLivemesh Addons by Elementor Medium 6.4 2024-07-04 03:32:23 Deep Dive
CVE-2024-2655 Elementor Addons by Livemesh <= 8.3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Display Name livemeshLivemesh Addons by Elementor Medium 6.4 2024-04-10 05:32:23 Deep Dive
CVE-2024-2539 Elementor Addons by Livemesh <= 8.3.6 - Authenticated(Contributor+) Stored Cross-Site Scripting via widget _id attribute livemeshLivemesh Addons by Elementor Medium 6.4 2024-04-10 05:32:22 Deep Dive
CVE-2024-1458 Elementor Addons by Livemesh <= 8.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Text Widget livemeshLivemesh Addons by Elementor Medium 6.4 2024-04-09 18:59:29 Deep Dive