cleantalk
Vulnerabilities and Security Researches

ElementsReady Addons for Elementor, CVE-2025-39546

CVE, Research URL

CVE-2025-39546

Home page URL

Security reports for ElementsReady Addons for Elementor

Application

ElementsReady Addons for Elementor

Published on
Apr 16, 2025
Research Description
ElementsReady Addons for Elementor [element-ready-lite] < 6.6.3 CVE-2025-39546 [en] Cross-Site Request Forgery (CSRF) vulnerability in quomodosoft ElementsReady Addons for Elementor allows Cross Site Request Forgery. This issue affects ElementsReady Addons for Elementor: from n/a through 6.6.2.
Affected versions
Min -, max 6.6.3.
Status
vulnerable
Previous vulnerability researches
WP Gravity Forms Insightly (56cb8480-1791-4990-8fc7-2cb98a10c207) , Jun 06, 2024
New vulnerability
WordPress Job Board and Recruitment Plugin &#8211; JobWP (CVE-2025-2010) , Apr 20, 2025
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025