VYPR

All In One Addons For Elementor

by Bold Themes

CVEs (2)

  • CVE-2024-2137MedApr 12, 2024
    risk 0.42cvss 6.4epss 0.00

    The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple pricing widgets (e.g. Pricing Single, Pricing Icon, Pricing Tab) in all versions up to, and including, 2.5.1 due to insufficient input sanitization…

  • CVE-2024-10321MedMar 8, 2025
    risk 0.28cvss 4.3epss 0.00

    The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.5 in elements/advanced-tab/template/view.php. This makes it possible for authenticated attackers, with…