Vulnerabilities > Leevio > Happy Addons FOR Elementor

DATE CVE VULNERABILITY TITLE RISK
2024-03-07 CVE-2024-1377 Cross-site Scripting vulnerability in Leevio Happy Addons for Elementor
The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘author_meta_tag’ attribute of the Author Meta widget in all versions up to, and including, 3.10.3 due to insufficient input sanitization and output escaping.
network
low complexity
leevio CWE-79
5.4
5.4
2024-02-29 CVE-2024-0438 Cross-site Scripting vulnerability in Leevio Happy Addons for Elementor
The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the wrapper link parameter in the Age Gate in all versions up to, and including, 3.10.1 due to insufficient input sanitization and output escaping.
network
low complexity
leevio CWE-79
5.4
5.4
2024-02-29 CVE-2024-0838 Cross-site Scripting vulnerability in Leevio Happy Addons for Elementor
The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the side image URL parameter in the Age Gate in all versions up to, and including, 3.10.1 due to insufficient input sanitization and output escaping.
network
low complexity
leevio CWE-79
5.4
5.4