ideaboxcreations 厂商漏洞列表 / CVE 中文分析 12

ideaboxcreations 厂商相关 12 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

该厂商专注于创意工具开发，其产品主要面向设计协作和创意管理领域。历史漏洞记录显示，其产品曾存在远程代码执行、跨站脚本和权限绕过等安全问题，其中权限管理缺陷尤为常见。截至最新统计，其漏洞库已收录12条CVE记录，反映出持续的安全挑战。建议用户及时更新补丁并加强访问控制，以降低潜在风险。

上位製品 ideaboxcreations: PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) PowerPack Lite for Beaver Builder

CVEs 12

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2025-8388	PowerPack Lite for Elementor <= 2.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting Via 'cursor_url' — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	6.4	Medium	2025-09-10
CVE-2025-1512	PowerPack Elementor Addons (Free Widgets, Extensions and Templates) <= 2.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	6.4	Medium	2025-04-01
CVE-2024-12239	PowerPack Lite for Beaver Builder <= 1.3.0.5 - Reflected Cross-Site Scripting via Navigate Parameter — PowerPack Lite for Beaver BuilderCWE-79	6.1	Medium	2024-12-17
CVE-2024-10692	PowerPack Elementor Addons (Free Widgets, Extensions and Templates) <= 2.8.1 - Authenticated (Contributor+) Post Disclosure — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-639	4.3	Medium	2024-12-06
CVE-2024-5787	PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Link Effects Widget — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	6.4	Medium	2024-06-13
CVE-2024-5327	PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.19 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	6.4	Medium	2024-05-30
CVE-2024-2289	PowerPack Lite for Beaver Builder <= 1.3.0 - Authenticated(Contributor+) Stored Cross-Site Scripting via element link — PowerPack Lite for Beaver BuilderCWE-79	6.4	Medium	2024-04-09
CVE-2024-2492	PowerPack Addons for Elementor <= 2.7.18 - Authenticated (Contributor+) Stored Cross-Site Scripting via Twitter Tweet Widget — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	6.4	Medium	2024-04-09
CVE-2024-2491	PowerPack Addons for Elementor <= 2.7.17 - Authenticated (Contributor+) Stored Cross-Site Scripting via _html_tag — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	6.4	Medium	2024-03-30
CVE-2024-1411	PowerPack Addons for Elementor <= 2.7.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Twitter Buttons Widget — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	6.4	Medium	2024-02-20
CVE-2024-1055	PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.14 - Authenticated (Contributor+) Stored Cross-Site Scripting — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-79	5.4	Medium	2024-02-07
CVE-2023-6984	PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) <= 2.7.13 - Cross-Site Request Forgery — PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)CWE-352	5.3	Medium	2024-01-03

本页汇总了 ideaboxcreations 厂商截至目前公开的全部 12 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目標達成 すべての支援者に感謝 — 100%達成しました！

ideaboxcreations 厂商漏洞列表 / CVE 中文分析 12

目標達成すべての支援者に感謝 — 100%達成しました！