Vulnerabilities > Wpdeveloper

DATE CVE VULNERABILITY TITLE RISK
2021-05-05 CVE-2021-24255 Cross-site Scripting vulnerability in Wpdeveloper Essential Addons for Elementor
The Essential Addons for Elementor Lite WordPress Plugin before 4.5.4 has two widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, both via a similar method.
3.5
2019-08-12 CVE-2017-18504 Cross-Site Request Forgery (CSRF) vulnerability in Wpdeveloper Twitter Cards Meta
The twitter-cards-meta plugin before 2.5.0 for WordPress has CSRF.
6.8
2019-08-12 CVE-2017-18503 Cross-site Scripting vulnerability in Wpdeveloper Twitter Cards Meta
The twitter-cards-meta plugin before 2.5.0 for WordPress has XSS.
4.3