Detheme Dethemekit_for_elementor

11 CVEs affecting Detheme Dethemekit_for_elementor. Latest disclosed: 2025-03-14. Critical: 0, High: 0.

Top CVEs affecting Detheme Dethemekit_for_elementor
CVESeverityScorePublishedSummary
CVE-2025-26772Medium6.52025-02-17Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Detheme DethemeKit For Elementor dethemekit-for-elementor…
CVE-2024-47632Medium6.52024-10-05Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Detheme DethemeKit For Elementor dethemekit-for-elementor…
CVE-2024-34575Medium6.52024-05-17Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in deTheme DethemeKit For Elementor allows Stored XSS…
CVE-2024-32508Medium6.52024-04-17Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in deTheme DethemeKit For Elementor allows Stored XSS.This i…
CVE-2025-1526Medium6.42025-03-14The DethemeKit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the De Product Display Widget (countdown feature) in all ver…
CVE-2024-13644Medium6.42025-02-13The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's De Gallery widget in all versions up to, and in…
CVE-2024-5418Medium6.42024-05-31The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'slitems' attribute within the plugin's De Product Tab &…
CVE-2024-4374Medium6.42024-05-18The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 2…
CVE-2024-6283Medium5.42024-06-27The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the URL parameter of the De Gallery widget in all versions u…
CVE-2021-24270Medium5.42021-05-05The “DeTheme Kit for Elementor” WordPress Plugin before 1.5.5.5 has a widget that is vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users…
CVE-2025-0661Medium4.32025-02-13The DethemeKit For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.36 via the duplicate_post() fun…