Vulnerabilities > Cleversoft > Clever Addons FOR Elementor > 2.0.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-18 | CVE-2024-43324 | Cross-site Scripting vulnerability in Cleversoft Clever Addons for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CleverSoft Clever Addons for Elementor allows Stored XSS.This issue affects Clever Addons for Elementor: from n/a through 2.2.0. | 4.8 |
| 2024-06-06 | CVE-2024-2350 | Cross-site Scripting vulnerability in Cleversoft Clever Addons for Elementor The Clever Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the CAFE Icon, CAFE Team Member, and CAFE Slider widgets in all versions up to, and including, 2.1.9 due to insufficient input sanitization and output escaping. | 5.4 |
| 2021-05-05 | CVE-2021-24273 | Cross-site Scripting vulnerability in Cleversoft Clever Addons for Elementor The “Clever Addons for Elementor” WordPress Plugin before 2.1.0 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method. | 3.5 |