Brainstormforce Ultimate Addons For Elementor

9 CVEs affecting Brainstormforce Ultimate Addons For Elementor. Latest disclosed: 2025-08-02. Critical: 0, High: 0.

Top CVEs affecting Brainstormforce Ultimate Addons For Elementor
CVESeverityScorePublishedSummary
CVE-2024-11230Medium6.42024-12-23The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘size’ parameter in all versions up to, and inc…
CVE-2024-10325Medium6.42024-11-08The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG File uploads in all versions up to, an…
CVE-2024-5757Medium6.42024-06-13The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the url attribute within the plugin's Site Title w…
CVE-2024-2618Medium6.42024-05-24The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the size attribute in all versions up to, and inclu…
CVE-2024-4634Medium6.42024-05-16The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘hfe_svg_mime_types’ function in versions up to…
CVE-2024-1237Medium6.42024-03-13The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the flyout_layout attribute in all versions up to…
CVE-2024-2619Medium5.02024-05-16The Elementor Header & Footer Builder for WordPress is vulnerable to HTML Injection in all versions up to, and including, 1.6.26 due to insufficient input sani…
CVE-2025-8488Medium4.32025-08-02The Ultimate Addons for Elementor (Formerly Elementor Header & Footer Builder) plugin for WordPress is vulnerable to unauthorized modification of data due to a…
CVE-2024-10050Medium4.32024-10-24The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 1.6.43 via the hfe_tem…