Vulnerabilities > Nicheaddons > Primary Addon FOR Elementor > 1.5.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-13 | CVE-2024-54314 | Cross-site Scripting vulnerability in Nicheaddons Primary Addon for Elementor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NicheAddons Primary Addon for Elementor allows Stored XSS.This issue affects Primary Addon for Elementor: from n/a through 1.6.0. | 5.4 |
| 2024-11-28 | CVE-2024-10670 | Authorization Bypass Through User-Controlled Key vulnerability in Nicheaddons Primary Addon for Elementor The Primary Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.2 via the [prim_elementor_template] shortcode due to insufficient restrictions on which posts can be included. | 4.3 |
| 2024-10-17 | CVE-2024-49259 | Cross-site Scripting vulnerability in Nicheaddons Primary Addon for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Primary Addon for Elementor allows Stored XSS.This issue affects Primary Addon for Elementor: from n/a through 1.5.8. | 5.4 |
| 2024-10-06 | CVE-2024-44033 | Cross-site Scripting vulnerability in Nicheaddons Primary Addon for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Primary Addon for Elementor allows Stored XSS.This issue affects Primary Addon for Elementor: from n/a through 1.5.7. | 5.4 |