Vulnerabilities and security researches forsparkle-elementor-kit sparkle-elementor-kit

Dec 03, 2024

CVE, Research URL: CVE-2024-53774
Home page URL: Security reports for Sparkle Elementor Kit
Application: Sparkle Elementor Kit
Date: Dec 01, 2024
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sparkle WP Sparkle Elementor Kit allows DOM-Based XSS.This issue affects Sparkle Elementor Kit: from n/a through 2.0.9.
Affected versions: Min -, max -.
Status: vulnerable

Apr 06, 2025

CVE, Research URL: CVE-2025-32157
Home page URL: Security reports for Sparkle Elementor Kit
Application: Sparkle Elementor Kit
Date: Apr 04, 2025
Research Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Jakub Glos Sparkle Elementor Kit allows PHP Local File Inclusion. This issue affects Sparkle Elementor Kit: from n/a through 2.0.9.
Affected versions: Min -, max -.
Status: vulnerable