Vulnerabilities > Wpthemespace > Magical Addons FOR Elementor > 1.2.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-06 | CVE-2024-54212 | Cross-site Scripting vulnerability in Wpthemespace Magical Addons for Elementor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor alam Magical Addons For Elementor allows Stored XSS.This issue affects Magical Addons For Elementor: from n/a through 1.2.6. | 5.4 |
| 2024-11-09 | CVE-2024-10352 | Unspecified vulnerability in Wpthemespace Magical Addons for Elementor The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the get_content_type function in includes/widgets/content-reveal.php. | 4.3 |