Livemesh Livemesh Addons By Elementor
17 CVEs affecting Livemesh Livemesh Addons By Elementor. Latest disclosed: 2026-04-16. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-1620 | High | 8.8 | 2026-04-16 | The Livemesh Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 9.0. This is due to insuffic… |
CVE-2024-2385 | High | 8.8 | 2024-07-04 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.4 via several of the plugin… |
CVE-2026-1572 | Medium | 6.4 | 2026-04-16 | The Livemesh Addons for Elementor plugin for WordPress is vulnerable to unauthorized modification of data and Stored Cross-Site Scripting via plugin settings i… |
CVE-2024-8858 | Medium | 6.4 | 2024-09-25 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘piechart_settings’ parameter in all versions up to… |
CVE-2024-3639 | Medium | 6.4 | 2024-07-04 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Posts Grid widget in all versions up to, a… |
CVE-2024-2926 | Medium | 6.4 | 2024-07-04 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and includin… |
CVE-2024-3638 | Medium | 6.4 | 2024-07-04 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Marquee Text Widget, Testimonials Widget, a… |
CVE-2024-2655 | Medium | 6.4 | 2024-04-10 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Post widgets in all versions up to, and inc… |
CVE-2024-2539 | Medium | 6.4 | 2024-04-10 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via widget '_id' attributes in all versions up to, and inclu… |
CVE-2024-1458 | Medium | 6.4 | 2024-04-09 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘text_alignment’ attribute of the Animated Text widg… |
CVE-2024-1461 | Medium | 6.4 | 2024-04-09 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ attribute of the Team Members widget in all… |
CVE-2024-1465 | Medium | 6.4 | 2024-04-09 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘carousel_skin’ attribute of the Posts Carousel widg… |
CVE-2024-1464 | Medium | 6.4 | 2024-04-09 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ attribute of the Posts Slider widget in all… |
CVE-2024-1466 | Medium | 6.4 | 2024-04-09 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘slider_style’ attribute of the Posts Multislider wi… |
CVE-2024-1235 | Medium | 6.4 | 2024-02-20 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom class field in all versions up to, and includ… |
CVE-2024-0448 | Medium | 6.4 | 2024-02-05 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widget URL parameters in all versions up to… |
CVE-2022-4974 | Medium | 6.3 | 2024-10-16 | The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to… |