Vulnerabilities > Kitforest > Better Elementor Addons > 1.3.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-04 | CVE-2024-33541 | Unspecified vulnerability in Kitforest Better Elementor Addons Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in BetterAddons Better Elementor Addons allows PHP Local File Inclusion.This issue affects Better Elementor Addons: from n/a through 1.4.1. | 6.5 |
| 2024-05-14 | CVE-2024-34432 | Unspecified vulnerability in Kitforest Better Elementor Addons Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BetterAddons Better Elementor Addons better-elementor-addons allows Stored XSS.This issue affects Better Elementor Addons: from n/a through 1.4.4. | 5.4 |
| 2024-03-29 | CVE-2024-30423 | Unspecified vulnerability in Kitforest Better Elementor Addons Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BetterAddons Better Elementor Addons allows Stored XSS.This issue affects Better Elementor Addons: from n/a through 1.3.7. | 5.4 |
| 2024-03-29 | CVE-2024-2280 | Unspecified vulnerability in Kitforest Better Elementor Addons The Better Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the widget link URL values in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |