cleantalk
Vulnerabilities and Security Researches

Events Addon for Elementor, CVE-2024-49264

CVE, Research URL

CVE-2024-49264

Home page URL

Security reports for Events Addon for Elementor

Application

Events Addon for Elementor

Published on
Oct 18, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Events Addon for Elementor allows Stored XSS.This issue affects Events Addon for Elementor: from n/a through 2.2.0.
Affected versions
max 2.2.1.
Status
vulnerable
Previous vulnerability researches
Events Addon for Elementor (CVE-2023-47827) , Jun 07, 2024
Events Addon for Elementor (e2d11ef716ab300eb01b358d57f4ebdaec9333bb) , Jun 07, 2024
Events Addon for Elementor (CVE-2022-4974) , May 06, 2025
Events Addon for Elementor (CVE-2024-54315) , Dec 15, 2024
Events Addon for Elementor (CVE-2024-49264) , Oct 18, 2024
New vulnerability
YITH WooCommerce Quick View (CVE-2025-8617) , Apr 24, 2026
Publitio (CVE-2025-58962) , Apr 24, 2026
Social Rocket – Social Sharing Plugin (CVE-2026-1923) , Apr 24, 2026
Salon booking system (CVE-2025-8492) , Apr 24, 2026
Events Addon for Elementor (CVE-2025-8150) , Apr 24, 2026