Product
posimyth the plus addons for elementor
37 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-1287
CVE-2024-11829
CVE-2024-53823
CVE-2024-10365
CVE-2024-43932
CVE-2024-8913
CVE-2024-43977
CVE-2024-5583
CVE-2024-6575
CVE-2024-5763
CVE-2024-4482
CVE-2024-4983
CVE-2024-5455
CVE-2024-5344
CVE-2024-35709
CVE-2024-5341
CVE-2024-4485
CVE-2024-4484
CVE-2024-3718
CVE-2024-2784
CVE-2023-47178
CVE-2024-2785
CVE-2024-0445
CVE-2024-34373
CVE-2024-3199
CVE-2024-3197
CVE-2024-2210
CVE-2024-2203
CVE-2024-1419
CVE-2021-4332
CVE-2021-4331
CVE-2021-24949
CVE-2021-24948
CVE-2021-24359
CVE-2021-24358
CVE-2021-24351
CVE-2021-24175
< 6.2.3
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 6.2.0
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
<= 5.6.14
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH The Plus Addons for
< 6.0.4
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.6.3
Missing Authorization vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite the-plus-addons-for-elementor-page
< 5.6.12
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.6.3
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH The Plus Addons for
< 5.6.3
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.6.3
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.6.3
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.6.2
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.6.1
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.6.0
The Plus Addons for Elementor Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and i
< 5.6.0
The Plus Addons for Elementor Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘for
< 5.5.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH The Plus Addons for
< 5.5.0
The Plus Addons for Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'size' at
< 5.5.3
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.5.3
The Plus Addons for Elementor - Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vuln
< 5.5.5
The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several of the plugin's wi
< 5.5.5
The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Hover Card widget in a
< 5.2.9
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in POSIMYTH Innovation The Plus Addon
< 5.5.0
The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Age Gate widget in all
< 5.5.0
The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's element attri
< 5.5.0
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH The Plus Addons for
< 5.5.0
The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the countdown widget in al
< 5.5.0
The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via custom attributes in the p
< 5.4.2
The Plus Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including,
< 5.4.2
The Plus Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including,
< 5.4.1
The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ attribute of
<= 2.0.6
The Plus Addons for Elementor plugin for WordPress is vulnerable to arbitrary file reads in versions up to, and including 4.1.9 (p
<= 2.0.6
The Plus Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in versions up to, and including 4.1.9 (p
< 5.0.7
The "WP Search Filters" widget of The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7 does not sanitise and escape t
< 5.0.7
The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7 does not validate the qvquery parameter of the tp_get_dl_post_in
< 4.1.11
The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.11 did not properly check that a user requesting a password
< 4.1.10
The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a redirect parameter on a specifically
< 4.1.12
The theplus_more_post AJAX action of The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.12 did not properly sa
< 4.1.7
The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.7 was being actively exploited to by malicious actors to by