Vulnerability List - Page 3

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2024-10310	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.10.1 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Custom Gallery Widget	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.4	2024-11-02 02:03:05	Deep Dive
CVE-2022-4974	Freemius SDK <= 2.4.2 - Missing Authorization Checks	dashlabsltd	YASR – Yet Another Star Rating Plugin for WordPress	Medium	6.3	2024-10-16 06:43:30	Deep Dive
CVE-2024-47392	WordPress Element Pack Elementor Addons plugin <= 5.7.5 - Cross Site Scripting (XSS) vulnerability	bdthemes	Element Pack Elementor Addons	Medium	6.5	2024-10-05 14:42:53	Deep Dive
CVE-2024-47629	WordPress Ultimate Store Kit Elementor Addons plugin <= 2.0.5 - Cross Site Scripting (XSS) vulnerability	bdthemes	Ultimate Store Kit Elementor Addons	Medium	6.5	2024-10-05 13:21:53	Deep Dive
CVE-2024-8030	Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider <= 2.0.3 - Unauthenticated PHP Object Injection	bdthemes	Ultimate Store Kit – Addon For WooCommerce, EDD and Elementor	Critical	9.8	2024-08-28 02:05:47	Deep Dive
CVE-2024-5335	Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider <= 1.6.4 - Unauthenticated PHP Object Injection	bdthemes	Ultimate Store Kit – Addon For WooCommerce, EDD and Elementor	Critical	9.8	2024-08-21 08:29:15	Deep Dive
CVE-2024-43342	WordPress Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin <= 1.6.4 - Cross Site Scripting (XSS) vulnerability	BdThemes	Ultimate Store Kit Elementor Addons	Medium	6.5	2024-08-18 13:22:30	Deep Dive
CVE-2024-7247	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Gallery and Countdown Widgets	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.4	2024-08-13 05:30:55	Deep Dive
CVE-2024-4359	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.2 - Authenticated (Contributor+) Arbitrary File Read	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.5	2024-08-09 04:29:50	Deep Dive
CVE-2024-4360	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via title_tag	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.4	2024-08-09 04:29:49	Deep Dive
CVE-2024-4643	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.11 - Authenticated (Contributor+) Stored Cross-Site Scripting	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.4	2024-08-02 09:29:44	Deep Dive
CVE-2024-39667	WordPress Element Pack Elementor Addons plugin <= 5.6.11 - Cross Site Scripting (XSS) vulnerability	BdThemes	Element Pack Elementor Addons	Medium	6.5	2024-08-01 21:33:26	Deep Dive
CVE-2024-2455	Element Pack - Addon for Elementor Page Builder WordPress Plugin <= 7.9.0 - Authenticated(Contributor+) Stored Cross-Site Scripting via Wrapper Link URL	BDThemes	Element Pack Pro - Addon for Elementor Page Builder WordPress Plugin	Medium	6.4	2024-08-01 12:43:27	Deep Dive
CVE-2024-5555	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.4	2024-07-18 08:33:04	Deep Dive
CVE-2024-5554	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.11 - Authenticated (Contributor+) Stored Cross-Site Scripting	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.4	2024-07-18 08:33:03	Deep Dive
CVE-2024-5662	Ultimate Post Kit Addons For Elementor – (Post Grid, Post Carousel, Post Slider, Category List, Post Tabs, Timeline, Post Ticker, Tag Cloud) <= 3.11.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Social Count (Static) Widget	bdthemes	Ultimate Post Kit Addons for Elementor	Medium	6.4	2024-06-28 08:33:29	Deep Dive
CVE-2024-3925	Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.6.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via onclick events	bdthemes	Element Pack – Widgets, Templates & Addons for Elementor	Medium	6.4	2024-06-12 07:32:53	Deep Dive
CVE-2024-5640	Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) <= 3.14.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pacific Widget	bdthemes	Prime Slider – Addons for Elementor	Medium	6.4	2024-06-07 04:33:25	Deep Dive
CVE-2024-33568	WordPress Element Pack Pro plugin < 7.19.3 - Arbitrary File Read and Phar Deserialization vulnerability	BdThemes	Element Pack Pro	High	8.5	2024-06-04 13:12:11	Deep Dive
CVE-2024-3997	Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) <= 3.14.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pagepiling Widget	bdthemes	Prime Slider – Addons for Elementor	Medium	6.4	2024-05-23 11:02:38	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List - Page 3