Vulnerabilities > Posimyth > THE Plus Addons FOR Elementor > 5.6.3

DATE CVE VULNERABILITY TITLE RISK
2025-02-01 CVE-2024-11829 Cross-site Scripting vulnerability in Posimyth the Plus Addons for Elementor
The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Table Widget's searchable_label parameter in all versions up to, and including, 6.1.8 due to insufficient input sanitization and output escaping.
network
low complexity
posimyth CWE-79
5.4
5.4
2024-12-06 CVE-2024-53823 Cross-site Scripting vulnerability in Posimyth the Plus Addons for Elementor
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows DOM-Based XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.6.14.
network
low complexity
posimyth CWE-79
5.4
5.4
2024-11-20 CVE-2024-10365 Unspecified vulnerability in Posimyth the Plus Addons for Elementor
The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.0.3 via the render function in modules/widgets/tp_carousel_anything.php, modules/widgets/tp_page_scroll.php, and other widgets.
network
low complexity
posimyth
4.3
4.3
2024-10-11 CVE-2024-8913 Unspecified vulnerability in Posimyth the Plus Addons for Elementor
The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.6.11 via the render function in modules/widgets/tp_accordion.php.
network
low complexity
posimyth
4.3
4.3