Piotnet — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting Piotnet. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Piotnet is a WordPress plugin primarily used for building forms and pop-ups. Historically, it has been associated with multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues. The plugin's security record includes eight CVEs, with several critical RCE vulnerabilities allowing attackers to execute arbitrary code on affected sites. Piotnet's vulnerabilities often stem from insufficient input validation and improper permission checks. While no major public security incidents have been widely documented, the consistent discovery of critical flaws has led to its inclusion in multiple WordPress security advisories, highlighting ongoing concerns about its security posture.

Top products by Piotnet: Piotnet Addons For Elementor Pro Piotnet Addons For Elementor Piotnet Forms

CVEs 8

CVE ID	Title	CVSS	Severity	Published
CVE-2024-33635	WordPress Piotnet Addons For Elementor Pro plugin <= 7.1.17 - Unauthenticated Arbitrary Post/Page Deletion vulnerability — Piotnet Addons For Elementor ProCWE-862	7.5	High	2024-04-29
CVE-2024-33634	WordPress Piotnet Addons For Elementor Pro plugin <= 7.1.17 - Unauthenticated Server Side Request Forgery (SSRF) vulnerability — Piotnet Addons For Elementor ProCWE-918	5.4	Medium	2024-04-29
CVE-2024-33632	WordPress Piotnet Addons For Elementor Pro plugin <= 7.1.17 - Cross Site Request Forgery (CSRF) vulnerability — Piotnet Addons For Elementor ProCWE-352	5.4	Medium	2024-04-29
CVE-2024-33630	WordPress Piotnet Addons For Elementor plugin <= 2.4.26 - Cross Site Scripting (XSS) vulnerability — Piotnet Addons For ElementorCWE-79	6.5	Medium	2024-04-29
CVE-2024-33631	WordPress Piotnet Addons For Elementor Pro plugin <= 7.1.17 - Authenticated Stored Cross Site Scripting (XSS) vulnerability — Piotnet Addons For Elementor ProCWE-79	6.5	Medium	2024-04-29
CVE-2024-33633	WordPress Piotnet Addons For Elementor Pro plugin <= 7.1.17 - Reflected Cross Site Scripting (XSS) vulnerability — Piotnet Addons For Elementor ProCWE-79	7.1	High	2024-04-29
CVE-2024-29934	WordPress Piotnet Addons For Elementor plugin <= 2.4.25 - Cross Site Scripting (XSS) vulnerability — Piotnet Addons For ElementorCWE-79	6.5	Medium	2024-03-27
CVE-2023-51412	WordPress Piotnet Forms Plugin <= 1.0.25 is vulnerable to Arbitrary File Upload — Piotnet FormsCWE-434	9.0	Critical	2023-12-29

This page lists every published CVE security advisory associated with Piotnet. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Piotnet — Vulnerabilities & Security Advisories 8