| CVE-2024-3489 | Exclusive Addons for Elementor <= 2.6.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Expired Title | timstrifler | Exclusive Addons for Elementor | Medium | 6.4 | 2024-05-02 16:52:15 | Deep Dive |
| CVE-2024-2043 | EleForms – All In One Form Integration including DB for Elementor <= 2.9.9.7 - Missing Authorization to Sensitive Information Exposure | cscode | EleForms – All In One Form Integration including DB for Elementor | Medium | 5.3 | 2024-05-02 16:52:13 | Deep Dive |
| CVE-2024-3499 | ElementsKit Elementor addons <= 3.1.0 - Authenticated (Contributor+) Local File Inclusion via Onepage Scroll Module | roxnor | ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor | High | 8.8 | 2024-05-02 16:52:10 | Deep Dive |
| CVE-2024-3991 | ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) <= 2.8.7 - Authenticated (contributor+) Stored Cross-Site Scripting via _id | devitemsllc | ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin | Medium | 6.4 | 2024-05-02 16:52:08 | Deep Dive |
| CVE-2023-6214 | HT Mega – Absolute Addons For Elementor <= 2.4.6 - Sensitive Information Exposure via purchased_products | devitemsllc | HT Mega Addons for Elementor – Elementor Widgets & Template Builder | High | 7.5 | 2024-05-02 16:52:07 | Deep Dive |
| CVE-2024-2790 | HT Mega – Absolute Addons For Elementor <= 2.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Accordion/FAQ | devitemsllc | HT Mega Addons for Elementor – Elementor Widgets & Template Builder | Medium | 6.4 | 2024-05-02 16:52:07 | Deep Dive |
| CVE-2024-4203 | Premium Addons for Elementor <= 4.10.30 - Authenticated (Contributor+) Stored Cross-Site Scripting | leap13 | Premium Addons for Elementor – Powerful Elementor Templates & Widgets | Medium | 5.4 | 2024-05-02 16:52:05 | Deep Dive |
| CVE-2024-3161 | Jeg Elementor Kit <= 2.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget | jegtheme | Jeg Kit for Elementor – Powerful Addons for Elementor, Widgets & Templates for WordPress | Medium | 6.4 | 2024-05-02 16:52:03 | Deep Dive |
| CVE-2024-3647 | Premium Addons for Elementor <= 4.10.28 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'arrow_style' | leap13 | Premium Addons for Elementor – Powerful Elementor Templates & Widgets | Medium | 6.4 | 2024-05-02 16:52:03 | Deep Dive |
| CVE-2024-3819 | Jeg Elementor Kit <= 2.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via JKit - Banner | jegtheme | Jeg Kit for Elementor – Powerful Addons for Elementor, Widgets & Templates for WordPress | Medium | 6.4 | 2024-05-02 16:52:02 | Deep Dive |
| CVE-2024-3885 | Premium Addons for Elementor <= 4.10.28 - Authenticated (Contributor+) Stored Cross-Site Scripting | leap13 | Premium Addons for Elementor – Powerful Elementor Templates & Widgets | Medium | 6.4 | 2024-05-02 16:52:01 | Deep Dive |
| CVE-2024-3308 | HT Mega – Absolute Addons For Elementor <= 2.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Grid Widget | devitemsllc | HT Mega Addons for Elementor – Elementor Widgets & Template Builder | Medium | 6.4 | 2024-05-02 16:51:58 | Deep Dive |
| CVE-2024-3675 | Royal Elementor Addons and Templates <= 1.3.971 - Authenticated (Contributor+) Stored Cross-Site Scripting via Flip Carousel, Flip Box, Post Grid, and Taxonomy List Widget Attributes | wproyal | Royal Addons for Elementor – Addons and Templates Kit for Elementor | Medium | 6.4 | 2024-05-02 16:51:57 | Deep Dive |
| CVE-2024-2750 | Exclusive Addons for Elementor <= 2.6.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button Widget | timstrifler | Exclusive Addons for Elementor | Medium | 6.4 | 2024-05-02 16:51:56 | Deep Dive |
| CVE-2024-2503 | Exclusive Addons for Elementor <= 2.6.9.2 - Authenticated(Contributor+) Stored Cross-Site Scripting via Post Grid | timstrifler | Exclusive Addons for Elementor | Medium | 6.4 | 2024-05-02 16:51:55 | Deep Dive |
| CVE-2024-3728 | Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Filterable Gallery & Interactive Circle | wpdevteam | Essential Addons for Elementor – Popular Elementor Templates & Widgets | Medium | 6.4 | 2024-05-02 16:51:54 | Deep Dive |
| CVE-2024-3985 | Exclusive Addons for Elementor <= 2.6.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Call to Action | timstrifler | Exclusive Addons for Elementor | Medium | 6.4 | 2024-05-02 16:51:52 | Deep Dive |
| CVE-2024-4156 | Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.17 - Authenticated (Contributor+) Stored Cross-Site Scripting | wpdevteam | Essential Addons for Elementor – Popular Elementor Templates & Widgets | Medium | 6.4 | 2024-05-02 16:51:52 | Deep Dive |
| CVE-2024-4003 | Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.15 - Authenticated (Contributor+) Stored Cross-Site Scripting | wpdevteam | Essential Addons for Elementor – Popular Elementor Templates & Widgets | Medium | 6.4 | 2024-05-02 16:51:51 | Deep Dive |
| CVE-2024-2085 | HT Mega – Absolute Addons For Elementor <= 2.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'size' | devitemsllc | HT Mega Addons for Elementor – Elementor Widgets & Template Builder | Medium | 6.4 | 2024-05-02 16:51:45 | Deep Dive |