VYPR

Rrdevs For Elementor

by WordPress

Source repositories

CVEs (2)

  • CVE-2024-54232MedDec 9, 2024
    risk 0.42cvss 6.5epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RRDevs RRAddons for Elementor rrdevs-for-elementor allows Stored XSS.This issue affects RRAddons for Elementor: from n/a through <= 1.1.0.

  • CVE-2024-11915MedJan 11, 2025
    risk 0.28cvss 4.3epss 0.00

    The RRAddons for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.1.0 via the Popup block due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with…