Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

moveaddons — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting moveaddons. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Moveaddons is a content management system (CMS) extension provider focused on enhancing website functionality through plugins and modules. Historically, the platform has been susceptible to multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS) attacks, and privilege escalation flaws, with nine CVEs documented to date. These vulnerabilities often stem from insufficient input validation and improper access controls in third-party integrations. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for unpatched implementations, particularly in environments where default configurations remain unchanged.

Top products by moveaddons: Move Addons for Elementor
CVE IDTitleCVSSSeverityPublished
CVE-2024-56254 WordPress Move Addons for Elementor plugin <= 1.3.6 - Cross Site Scripting (XSS) vulnerability — Move Addons for ElementorCWE-79 6.5 Medium2025-01-02
CVE-2024-10360 Move Addons for Elementor <= 1.3.5 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates — Move Addons for ElementorCWE-200 4.3 Medium2024-10-29
CVE-2024-47364 WordPress Move Addons for Elementor plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability — Move Addons for ElementorCWE-79 6.5 Medium2024-10-06
CVE-2024-47396 WordPress Move Addons for Elementor plugin <= 1.3.3 - Cross Site Scripting (XSS) vulnerability — Move Addons for ElementorCWE-79 6.5 Medium2024-10-01
CVE-2024-30525 WordPress Move Addons for Elementor plugin <= 1.2.9 - Broken Access Control vulnerability — Move Addons for ElementorCWE-862 5.3 Medium2024-06-04
CVE-2024-4695 Move Addons for Elementor <= 1.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — Move Addons for ElementorCWE-79 6.4 Medium2024-05-21
CVE-2024-34562 WordPress Move Addons for Elementor plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability — Move Addons for ElementorCWE-79 6.5 Medium2024-05-08
CVE-2024-29920 WordPress Move Addons for Elementor plugin <= 1.2.9 - Cross Site Scripting (XSS) vulnerability — Move Addons for ElementorCWE-79 6.5 Medium2024-03-27
CVE-2024-2131 Move Addons for Elementor <= 1.2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting — Move Addons for ElementorCWE-79 6.4 Medium2024-03-23

This page lists every published CVE security advisory associated with moveaddons. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.