Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

thehappymonster — Vulnerabilities & Security Advisories 28

Browse all 28 CVE security advisories affecting thehappymonster. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by thehappymonster:Happy Addons for Elementor
CVE IDTitleCVSSSeverityPublished
CVE-2026-2917 Happy Addons for Elementor <= 3.21.0 - Insecure Direct Object Reference to Authenticated (Contributor+) Post Duplication via 'post_id' Parameter — Happy Addons for ElementorCWE-639 5.4 Medium2026-03-11
CVE-2026-2918 Happy Addons for Elementor <= 3.21.0 - Insecure Direct Object Reference to Authenticated (Contributor+) Stored Cross-Site Scripting via Template Conditions — Happy Addons for ElementorCWE-639 6.4 Medium2026-03-11
CVE-2026-1210 Happy Addons for Elementor <= 3.20.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via '_elementor_data' Meta Field — Happy Addons for ElementorCWE-79 6.4 Medium2026-02-03
CVE-2025-14635 Happy Addons for Elementor <= 3.20.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS — Happy Addons for ElementorCWE-79 6.4 Medium2025-12-23
CVE-2024-12852 Happy Addons for Elementor <= 3.15.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Happy Addons for ElementorCWE-79 6.4 Medium2025-01-08
CVE-2024-10538 Happy Addons for Elementor <= 3.12.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison — Happy Addons for ElementorCWE-79 6.4 Medium2024-11-12
CVE-2024-8801 Happy Addons for Elementor <= 3.12.2 - Authenticated (Contributor+) Sensitive Information Exposure — Happy Addons for ElementorCWE-200 4.3 Medium2024-09-24
CVE-2024-6627 Happy Addons for Elementor <= 3.11.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via PDF View Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-07-27
CVE-2024-5790 Happy Addons for Elementor <= 3.11.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gradient Heading Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-06-29
CVE-2024-5041 Happy Addons for Elementor <= 3.10.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Accordion — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-31
CVE-2024-5347 Happy Addons for Elementor <= 3.10.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Post Navigation Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-31
CVE-2024-5088 Happy Addons for Elementor <= 3.10.8 - Authenticated (Contributor+) Stored Cross-Site Scripting — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-18
CVE-2024-4865 Happy Addons for Elementor <= 3.10.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via _id Parameter — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-18
CVE-2024-4391 Happy Addons for Elementor Authenticated (Contributor+) Stored-XSS <= 3.10.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Event Calendar Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-16
CVE-2024-4478 Happy Addons for Elementor <= 3.10.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Stack Group Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-16
CVE-2024-3891 Happy Addons for Elementor <= 3.10.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via HTML Tags — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-02
CVE-2024-3724 Happy Addons for Elementor <= 3.10.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Stack Group, Photo Stack, & Horizontal Timeline — Happy Addons for ElementorCWE-79 6.4 Medium2024-05-02
CVE-2024-3890 Happy Addons for Elementor <= 3.10.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Calendly Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-04-26
CVE-2024-1498 Happy Addons for Elementor <= 3.10.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Photo Stack Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-04-09
CVE-2024-2787 Happy Addons for Elementor <= 3.10.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Page Title HTML Tag — Happy Addons for ElementorCWE-79 6.4 Medium2024-04-09
CVE-2024-2789 Happy Addons for Elementor <= 3.10.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Calendy — Happy Addons for ElementorCWE-79 6.4 Medium2024-04-09
CVE-2024-1387 Happy Addons for Elementor <= 3.10.4 - Incorrect Authorization to Information Exposure — Happy Addons for ElementorCWE-862 4.3 Medium2024-04-09
CVE-2024-2788 Happy Addons for Elementor <= 3.10.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Post Title HTML Tag — Happy Addons for ElementorCWE-79 6.4 Medium2024-04-09
CVE-2024-2786 Happy Addons for Elementor <= 3.10.4 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via title_tag — Happy Addons for ElementorCWE-79 5.4 Medium2024-04-09
CVE-2024-1377 Happy Addons for Elementor <= 3.10.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Author Meta Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-03-07
CVE-2024-1366 Happy Addons for Elementor <= 3.10.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Archive Title Widget — Happy Addons for ElementorCWE-79 6.4 Medium2024-03-07
CVE-2024-0838 Happy Addons for Elementor <= 3.10.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Happy Addons for ElementorCWE-79 6.4 Medium2024-02-20
CVE-2024-0438 Happy Addons for Elementor <= 3.10.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Happy Addons for ElementorCWE-79 6.4 Medium2024-02-20

This page lists every published CVE security advisory associated with thehappymonster. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.