Wpmet Elements Kit Elementor Addons — known CVE vulnerabilities
Every CVE whose affected-product data names Wpmet Elements Kit Elementor Addons, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2024-3499 — CVSS 8.8 (high): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.0 via…
CVE-2024-2047 — CVSS 8.8 (high): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.0.6 via…
CVE-2024-32505 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Roxnor ElementsKit Elementor addons…
CVE-2024-1238 — CVSS 6.4 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the button ID parameter in all…
CVE-2024-1239 — CVSS 6.4 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the blog post read more button in…
CVE-2024-2042 — CVSS 6.4 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Accordion widget in all…
CVE-2024-2803 — CVSS 6.4 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the countdown widget in all versions…
CVE-2024-3650 — CVSS 6.4 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Accordion widget in all…
CVE-2024-10091 — CVSS 6.4 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Comparison Widget in all…
CVE-2021-24258 — CVSS 5.4 (medium): The Elements Kit Lite and Elements Kit Pro WordPress Plugins before 2.2.0 have a number of widgets that are vulnerable to stored Cross-Site…
CVE-2023-6582 — CVSS 5.3 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including…
CVE-2024-37255 — CVSS 5.3 (medium): Missing Authorization vulnerability in Roxnor ElementsKit Elementor addons Lite elementskit-lite.This issue affects ElementsKit Elementor…
CVE-2024-6455 — CVSS 5.3 (medium): The ElementsKit Elementor addons plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.2.0 due…
CVE-2023-39993 — CVSS 4.3 (medium): Missing Authorization vulnerability in Wpmet Elements kit Elementor addons.This issue affects Elements kit Elementor addons: from n/a…