La-studioweb Element_kit_for_elementor
5 CVEs affecting La-studioweb Element_kit_for_elementor. Latest disclosed: 2025-05-30. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-10873 | High | 8.8 | 2024-11-23 | The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.4.2 via the _load_te… |
CVE-2024-5349 | High | 8.8 | 2024-07-02 | The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.8.1 via the 'map_s… |
CVE-2024-37479 | High | 8.5 | 2024-07-02 | Local File Inclusion vulnerability in LA-Studio LA-Studio Element Kit for Elementor via "LaStudioKit Progress Bar" widget in New Post, specifically in the "pro… |
CVE-2025-4943 | Medium | 6.4 | 2025-05-30 | The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-lakit-element-link’ parameter in all ve… |
CVE-2024-35725 | Medium | 4.3 | 2024-06-10 | Missing Authorization vulnerability in LA-Studio LA-Studio Element Kit for Elementor.This issue affects LA-Studio Element Kit for Elementor: from n/a through 1… |