VYPR

Wdesignkit

by WordPress

Source repositories

CVEs (3)

  • CVE-2024-53811MedDec 6, 2024
    risk 0.43cvss 6.6epss 0.00

    Unrestricted Upload of File with Dangerous Type vulnerability in POSIMYTH WDesignkit wdesignkit allows Upload a Web Shell to a Web Server.This issue affects WDesignkit: from n/a through <= 1.0.40.

  • CVE-2024-12189MedApr 1, 2025
    risk 0.42cvss 6.4epss 0.00

    The WDesignKit – Elementor & Gutenberg Starter Templates, Patterns, Cloud Workspace & Widget Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via custom widgets in all versions up to, and including, 1.2.3 due to insufficient input sanitization and…

  • CVE-2025-9029MedOct 4, 2025
    risk 0.28cvss 4.3epss 0.00

    The WDesignKit – Elementor & Gutenberg Starter Templates, Patterns, Cloud Workspace & Widget Builder plugin for WordPress is vulnerable to missing authorization via the wdkit_handle_review_submission function in versions less than, or equal to, 1.2.16. This is due to the…