cleantalk
Vulnerabilities and Security Researches

Drozd – Addons for Elementor, CVE-2024-52425

CVE, Research URL

CVE-2024-52425

Home page URL

Security reports for Drozd – Addons for Elementor

Application

Drozd – Addons for Elementor

Published on
Nov 18, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Urchenko Drozd – Addons for Elementor allows Stored XSS.This issue affects Drozd – Addons for Elementor: from n/a through 1.1.1.
Affected versions
Min -, max 1.1.1.
Status
vulnerable
Previous vulnerability researches
Drozd – Addons for Elementor (CVE-2024-52425) , Nov 17, 2024
New vulnerability
Football Pool (CVE-2025-5490) , Jun 20, 2025
CubeWP Forms – LeadGen & Contact Form (CVE-2025-49880) , Jun 20, 2025
WP2LEADS | WordPress und KlickTipp einfach verbinden – WooCommerce und KlickTipp einfach verbinden (CVE-2025-49316) , Jun 20, 2025
Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit (CVE-2025-1562) , Jun 20, 2025
eCommerce Product Catalog Plugin for WordPress (CVE-2025-49331) , Jun 20, 2025