Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

wowdevs — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting wowdevs. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Wowdevs develops gaming software with a core focus on World of Warcraft server emulation and related tools. Historically, their products have frequently contained remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues. Security researchers have documented multiple critical vulnerabilities in their offerings, with nine CVEs currently on record. Their codebase often contains hardcoded credentials and insufficient input validation, creating multiple attack vectors. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests significant security concerns in their development practices.

Top products by wowdevs: Sky Addons – Elementor Addons with Widgets & Templates Sky Addons for Elementor
CVE IDTitleCVSSSeverityPublished
CVE-2026-7475 Sky Addons <= 3.3.2 - Authenticated (Author+) Stored Cross-Site Scripting via Custom Script — Sky Addons – Elementor Addons with Widgets & TemplatesCWE-79 6.4 Medium2026-05-08
CVE-2025-8216 Sky Addons for Elementor <= 3.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — Sky Addons – Elementor Addons with Widgets & TemplatesCWE-79 6.4 Medium2025-07-29
CVE-2025-46260 WordPress Sky Addons for Elementor plugin <= 3.0.1 - Cross Site Scripting (XSS) vulnerability — Sky Addons for ElementorCWE-79 6.5 Medium2025-04-24
CVE-2024-11601 Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blogs) <= 2.6.1 - Cross-Site Request Forgery to Limited Arbitrary Options Update — Sky Addons – Elementor Addons with Widgets & TemplatesCWE-862 8.1 High2024-11-22
CVE-2024-11104 Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blogs) <= 2.6.2 - Missing Authorization to Authenticated (Subscriber+) Limited Arbitrary Options Update — Sky Addons – Elementor Addons with Widgets & TemplatesCWE-862 8.1 High2024-11-22
CVE-2024-9542 Sky Addons for Elementor <= 2.6.1 - Authenticated (Contributor+) Sensitive Information Exposure via Content Switcher Widget Elementor Template — Sky Addons – Elementor Addons with Widgets & TemplatesCWE-200 4.3 Medium2024-11-21
CVE-2024-50433 WordPress Sky Addons for Elementor plugin <= 2.5.15 - Cross Site Scripting (XSS) vulnerability — Sky Addons for ElementorCWE-79 6.5 Medium2024-10-28
CVE-2024-47332 WordPress Sky Addons for Elementor plugin <= 2.5.11 - Cross Site Scripting (XSS) vulnerability — Sky Addons for ElementorCWE-79 6.5 Medium2024-10-06
CVE-2024-38687 WordPress Sky Addons for Elementor plugin <= 2.5.5 - Cross Site Scripting (XSS) vulnerability — Sky Addons for ElementorCWE-79 6.5 Medium2024-07-20
CVE-2024-2286 Sky Addons for Elementor <= 2.4.0 - Authenticated(Contributor+) Stored Cross-site scripting via Wrapper Link URL — Sky Addons – Elementor Addons with Widgets & TemplatesCWE-79 6.4 Medium2024-03-13

This page lists every published CVE security advisory associated with wowdevs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.