Ideabox Powerpack_addons_for_elementor
11 CVEs affecting Ideabox Powerpack_addons_for_elementor. Latest disclosed: 2024-06-13. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-3668 | High | 8.8 | 2024-06-08 | The PowerPack Pro for Elementor plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.10.17. This is due to the pl… |
CVE-2023-49739 | High | 7.1 | 2023-12-14 | Vulnerability in IdeaBox Creations PowerPack Pro for Elementor.This issue affects PowerPack Pro for Elementor: from n/a through 2.9.23. |
CVE-2024-5787 | Medium | 6.4 | 2024-06-13 | The PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'url' att… |
CVE-2024-5327 | Medium | 6.4 | 2024-05-30 | The PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the… |
CVE-2024-2492 | Medium | 6.4 | 2024-04-09 | The PowerPack Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Twitter Tweet widget in all versions up to, and in… |
CVE-2024-2491 | Medium | 6.4 | 2024-03-30 | The PowerPack Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the *_html_tag* attribute of multiple widgets in all v… |
CVE-2024-1411 | Medium | 6.4 | 2024-02-29 | The PowerPack Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the settings of the Twitter Buttons Widget in all vers… |
CVE-2021-25027 | Medium | 6.1 | 2022-01-03 | The PowerPack Addons for Elementor WordPress plugin before 2.6.2 does not escape the tab parameter before outputting it back in an attribute in the admin dashb… |
CVE-2024-1055 | Medium | 5.4 | 2024-02-07 | The PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's… |
CVE-2021-24263 | Medium | 5.4 | 2021-05-05 | The “Elementor Addons – PowerPack Addons for Elementor” WordPress Plugin before 2.3.2 for WordPress has several widgets that are vulnerable to stored Cross-Sit… |
CVE-2023-6984 | Medium | 5.3 | 2024-01-03 | The PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up… |