Vulnerabilities > Quomodosoft > Elementsready > 6.4.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-17 | CVE-2024-10356 | Information Exposure vulnerability in Quomodosoft Elementsready The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.4.8 in inc/Widgets/accordion/output/content.php. | 4.3 |
| 2024-12-09 | CVE-2024-54224 | Cross-site Scripting vulnerability in Quomodosoft Elementsready Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuomodoSoft ElementsReady Addons for Elementor allows DOM-Based XSS.This issue affects ElementsReady Addons for Elementor: from n/a through 6.4.7. | 5.4 |