Vulnerabilities > Wedevs > Happy Addons FOR Elementor > 2.0.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-11 | CVE-2023-6632 | Cross-site Scripting vulnerability in Wedevs Happy Addons for Elementor The Happy Addons for Elementor plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via DOM in all versions up to and including 3.9.1.1 (versions up to 2.9.1.1 in Happy Addons for Elementor Pro) due to insufficient input sanitization and output escaping. | 6.1 |
| 2023-12-29 | CVE-2023-51676 | Server-Side Request Forgery (SSRF) vulnerability in Wedevs Happy Addons for Elementor Server-Side Request Forgery (SSRF) vulnerability in Leevio Happy Addons for Elementor.This issue affects Happy Addons for Elementor: from n/a through 3.9.1.1. | 6.5 |
| 2023-07-10 | CVE-2023-28989 | Cross-Site Request Forgery (CSRF) vulnerability in Wedevs Happy Addons for Elementor Cross-Site Request Forgery (CSRF) vulnerability in weDevs Happy Addons for Elementor plugin <= 3.8.2 versions. | 8.8 |