cleantalk
Vulnerabilities and Security Researches

PowerPack Addons for Elementor (Free Widgets, Extensions and Templates), CVE-2026-32430

CVE, Research URL

CVE-2026-32430

Home page URL

Security reports for PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)

Application

PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)

Published on
Mar 14, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack Addons for Elementor powerpack-lite-for-elementor allows Stored XSS.This issue affects PowerPack Addons for Elementor: from n/a through <= 2.9.9.
Affected versions
max 2.9.9.
Status
vulnerable
Previous vulnerability researches
StatCounter &#8211; Free Real Time Visitor Stats (CVE-2025-13048) , Mar 29, 2026
StatCounter &#8211; Free Real Time Visitor Stats (CVE-2021-24920) , Jun 06, 2024
New vulnerability
PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) (CVE-2026-32430) , Mar 29, 2026
YayMail &#8211; WooCommerce Email Customizer (CVE-2026-27327) , Mar 29, 2026
Strong Testimonials (CVE-2026-24957) , Mar 29, 2026
BackWPup &#8211; WordPress Backup Plugin (CVE-2025-15041) , Mar 29, 2026
hCaptcha for WordPress (CVE-2026-25315) , Mar 29, 2026