cleantalk
Vulnerabilities and Security Researches

130+ Widgets | Best Addons For Elementor – FREE, CVE-2026-45214

CVE, Research URL

CVE-2026-45214

Home page URL

Security reports for 130+ Widgets | Best Addons For Elementor – FREE

Application

130+ Widgets | Best Addons For Elementor – FREE

Published on
May 12, 2026
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows Blind SQL Injection.This issue affects Xpro Elementor Addons: from n/a through <= 1.5.1.
Affected versions
max 1.5.2.
Status
vulnerable
Previous vulnerability researches
LifePress (CVE-2025-53337) , Aug 24, 2025
LifePress (CVE-2026-24563) , Jan 27, 2026
LifePress (CVE-2026-6690) , May 14, 2026
New vulnerability
Views for WPForms &#8211; Display &amp; Edit WPForms Entries on your site frontend (CVE-2026-42742) , May 14, 2026
LifePress (CVE-2026-6690) , May 14, 2026
Woo Commerce Minimum Weight (CVE-2026-6932) , May 14, 2026
OceanWP (CVE-2025-8944) , May 14, 2026
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2026-45214) , May 14, 2026