Livemeshelementor Addons For Elementor — known CVE vulnerabilities
Every CVE whose affected-product data names Livemeshelementor Addons For Elementor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (18)
CVE-2024-2385 — CVSS 8.8 (high): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.4 via…
CVE-2024-27986 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Livemesh Elementor Addons by Livemesh…
CVE-2024-47303 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in livemesh Livemesh Addons for…
CVE-2024-25598 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Livemesh Livemesh Addons for…
CVE-2024-1464 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ attribute of the…
CVE-2024-1465 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘carousel_skin’ attribute of…
CVE-2024-1466 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘slider_style’ attribute of…
CVE-2024-2539 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via widget '_id' attributes in all…
CVE-2024-2655 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Post widgets in all…
CVE-2024-2926 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions…
CVE-2024-3638 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Marquee Text Widget…
CVE-2024-3639 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Posts Grid widget in…
CVE-2024-8858 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘piechart_settings’…
CVE-2024-1235 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom class field in all…
CVE-2024-1458 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘text_alignment’ attribute…
CVE-2024-1461 — CVSS 6.4 (medium): The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ attribute of the…
CVE-2021-24260 — CVSS 5.4 (medium): The “Livemesh Addons for Elementor” WordPress Plugin before 6.8 has several widgets that are vulnerable to stored Cross-Site Scripting…
CVE-2022-3862 — CVSS 4.8 (medium): The Livemesh Addons for Elementor WordPress plugin before 7.2.4 does not sanitise and escape some of its settings, which could allow high…