Crocoblock Jetelements
7 CVEs affecting Crocoblock Jetelements. Latest disclosed: 2025-01-21. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-39157 | Critical | 9.0 | 2023-12-31 | Improper Control of Generation of Code ('Code Injection') vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: f… |
CVE-2024-7145 | High | 8.8 | 2024-08-16 | The JetElements plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.6.20 via the 'progress_type' parameter. This… |
CVE-2023-48760 | High | 8.2 | 2024-06-19 | Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13. |
CVE-2023-48759 | High | 7.5 | 2024-06-19 | Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13. |
CVE-2025-0371 | Medium | 6.4 | 2025-01-21 | The JetElements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 2.7.2.1 due to insu… |
CVE-2024-7144 | Medium | 6.4 | 2024-08-16 | The JetElements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' and 'slide_id' parameters in all versions up to, and including… |
CVE-2023-48761 | Medium | 6.3 | 2024-06-19 | Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13. |