cleantalk
Vulnerabilities and Security Researches

130+ Widgets | Best Addons For Elementor – FREE, CVE-2024-34570

CVE, Research URL

CVE-2024-34570

Home page URL

Security reports for 130+ Widgets | Best Addons For Elementor – FREE

Application

130+ Widgets | Best Addons For Elementor – FREE

Published on
May 08, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Xpro Xpro Elementor Addons allows Stored XSS.This issue affects Xpro Elementor Addons: from n/a through 1.4.3.
Affected versions
Min -, max 1.4.3.1.
Status
vulnerable
Previous vulnerability researches
130+ Widgets | Best Addons For Elementor – FREE (CVE-2024-54253) , Dec 11, 2024
130+ Widgets | Best Addons For Elementor – FREE (CVE-2024-12584) , Jan 08, 2025
130+ Widgets | Best Addons For Elementor – FREE (CVE-2025-2108) , Mar 21, 2025
130+ Widgets | Best Addons For Elementor – FREE (CVE-2025-32163) , Apr 05, 2025
130+ Widgets | Best Addons For Elementor – FREE (CVE-2024-2250) , Jun 07, 2024
New vulnerability
WP User Profiles (CVE-2025-31524) , Apr 17, 2025
ZooEffect Plugin for Video player, Photo Gallery Slideshow jQuery and audio / music / podcast – HTML5 (CVE-2025-26954) , Apr 17, 2025
Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and Social Followers (CVE-2024-10107) , Apr 17, 2025
Raptive Ads (CVE-2025-32554) , Apr 17, 2025
Contact Form by Supsystic (CVE-2024-13452) , Apr 17, 2025