Browse all 3 CVE security advisories affecting BetterAddons. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BetterAddons develops browser extensions to enhance user experience across platforms. Historically, the product has been associated with multiple remote code execution (RCE) and cross-site scripting (XSS) vulnerabilities, often stemming from insufficient input validation and improper sanitization. These issues have allowed attackers to execute arbitrary code or inject malicious scripts in user environments. While no major public security incidents have been documented, the three recorded CVEs highlight ongoing security challenges. The extension's broad permissions and deep browser integration increase potential attack surfaces, necessitating rigorous security testing and regular updates to mitigate risks associated with privilege escalation and unauthorized access.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-33541 | WordPress Better Elementor Addons plugin <= 1.4.1 - Local File Inclusion vulnerability — Better Elementor AddonsCWE-22 | 6.5 | Medium | 2024-06-04 |
| CVE-2024-34432 | WordPress Better Elementor Addons plugin <= 1.4.4 - Cross Site Scripting (XSS) vulnerability — Better Elementor AddonsCWE-79 | 6.5 | Medium | 2024-05-09 |
| CVE-2024-30423 | WordPress Better Elementor Addons plugin <= 1.3.7 - Cross Site Scripting (XSS) vulnerability — Better Elementor AddonsCWE-79 | 6.5 | Medium | 2024-03-29 |
This page lists every published CVE security advisory associated with BetterAddons. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.