Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Essential Addons — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting Essential Addons. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Essential Addons is a WordPress plugin suite providing design elements and templates for website builders. Historically, it has been susceptible to multiple cross-site scripting (XSS) vulnerabilities and remote code execution (RCE) flaws, often due to insufficient input sanitization and improper file handling. The plugin has accumulated three CVE records, with RCE being the most critical class. Security researchers have identified consistent patterns of inadequate access controls and insufficient security checks in its components. While no major public incidents have been widely documented, the recurring nature of these vulnerabilities suggests ongoing security challenges that require careful implementation and regular updates by users.

Top products by Essential Addons: Essential Addons for Elementor Pro
CVE IDTitleCVSSSeverityPublished
CVE-2024-5612 Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.8.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Lightbox and Modal Widget — Essential Addons for Elementor ProCWE-79 6.4 Medium2024-06-07
CVE-2024-5086 Essential Addons for Elementor PRO – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.8.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via Team Member Carousel Widget — Essential Addons for Elementor ProCWE-79 6.4 Medium2024-05-29
CVE-2024-3645 Essential Addons for Elementor Pro <= 5.8.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'title_html_tag' — Essential Addons for Elementor ProCWE-79 6.4 Medium2024-04-22

This page lists every published CVE security advisory associated with Essential Addons. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.