VYPR

Primary Addon For Elementor

by WordPress

CVEs (2)

  • CVE-2024-5229MedMay 25, 2024
    risk 0.35cvss 6.4epss 0.00

    The Primary Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Pricing Table widget in all versions up to, and including, 1.5.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes…

  • CVE-2024-10670Nov 28, 2024
    risk 0.00cvss epss 0.00

    The Primary Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.2 via the [prim_elementor_template] shortcode due to insufficient restrictions on which posts can be included. This makes it possible for…