Vulnerabilities > Wpdeveloper > Essential Addons FOR Elementor > 5.4.4

DATE CVE VULNERABILITY TITLE RISK
2024-01-04 CVE-2023-7044 Cross-site Scripting vulnerability in Wpdeveloper Essential Addons for Elementor
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via custom ID in all versions up to, and including, 5.9.2 due to insufficient input sanitization and output escaping.
network
low complexity
wpdeveloper CWE-79
5.4
5.4
2023-11-18 CVE-2023-32245 Unspecified vulnerability in Wpdeveloper Essential Addons for Elementor
Cross-Site Request Forgery (CSRF) vulnerability in WPDeveloper Essential Addons for Elementor Pro.This issue affects Essential Addons for Elementor Pro: from n/a through 5.4.8.
network
low complexity
wpdeveloper
8.8
8.8
2023-08-29 CVE-2023-32241 Cross-site Scripting vulnerability in Wpdeveloper Essential Addons for Elementor
Unauth.
network
low complexity
wpdeveloper CWE-79
6.1
6.1
2023-05-12 CVE-2023-32243 Improper Authentication vulnerability in Wpdeveloper Essential Addons for Elementor
Improper Authentication vulnerability in WPDeveloper Essential Addons for Elementor allows Privilege Escalation. This issue affects Essential Addons for Elementor: from 5.4.0 through 5.7.1.
network
low complexity
wpdeveloper CWE-287
critical
 9.8
9.8