Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Leap13 — Vulnerabilities & Security Advisories 41

Browse all 41 CVE security advisories affecting Leap13. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Leap13 operates as a provider of enterprise software solutions, primarily focusing on workflow automation and document management systems for large organizations. Security audits have identified forty-one distinct Common Vulnerabilities and Exposures (CVEs) associated with its platform, indicating a persistent history of security deficiencies. The most prevalent vulnerability classes include remote code execution, cross-site scripting, and broken access control mechanisms that allow unauthorized privilege escalation. These flaws often stem from insufficient input validation and inadequate authentication checks within the application’s core architecture. While specific major incidents involving data breaches remain largely unpublicized, the high volume of disclosed CVEs suggests systemic weaknesses in the development lifecycle. The company has faced scrutiny for the frequency of these updates, highlighting challenges in maintaining robust security postures for complex enterprise tools.

Top products by Leap13: Premium Addons for Elementor – Powerful Elementor Templates & Widgets Premium Addons for Elementor Premium Blocks – Gutenberg Blocks for WordPress Premium Addons PRO Disable Elementor Editor Translation
CVE IDTitleCVSSSeverityPublished
CVE-2024-2666 Premium Addons for Elementor <= 4.10.24 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 5.4 Medium2024-04-10
CVE-2024-2665 Premium Addons for Elementor <= 4.10.27 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 6.4 Medium2024-04-10
CVE-2024-2664 Premium Addons for Elementor <= 4.10.24 - Authenticated (Contributor+) Stored Cross-Site Scripting — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 6.4 Medium2024-04-10
CVE-2024-0376 Premium Addons for Elementor <= 4.10.16 - Authenticated(Contributor+) Stored Cross-Site Scripting via Wrapper Link Widget — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 6.4 Medium2024-04-09
CVE-2024-29106 WordPress Premium Addons for Elementor plugin <= 4.10.16 - Cross Site Scripting (XSS) vulnerability — Premium Addons for ElementorCWE-79 6.5 Medium2024-03-19
CVE-2024-2399 Premium Addons for Elementor <= 4.10.23 - Authenticated (Contributor+) Stored Cross-Site Scripting — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 6.4 Medium2024-03-15
CVE-2024-1680 Premium Addons for Elementor <= 4.10.21 - Authenticated (Contributor+) Stored Cross-Site Scripting via Banner, Team Members, and Image Scroll Widgets — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 6.4 Medium2024-03-13
CVE-2024-0326 Premium Addons for Elementor <= 4.10.17 - Authenticated(Contributor+) Stored Cross-Site Scripting via Link Wrapper — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 6.4 Medium2024-03-13
CVE-2024-1242 Premium Addons for Elementor <= 4.10.18 - Authenticated (Contributor+) Stored Cross-Site Scripting — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-79 6.4 Medium2024-02-20
CVE-2024-24831 WordPress Premium Addons for Elementor plugin <= 4.10.16 - Cross Site Scripting (XSS) vulnerability — Premium Addons for ElementorCWE-79 6.5 Medium2024-02-10
CVE-2023-37868 WordPress Premium Addons PRO Plugin <= 2.9.0 is vulnerable to Sensitive Data Exposure — Premium Addons PROCWE-200 6.5 Medium2023-11-30

This page lists every published CVE security advisory associated with Leap13. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.