nicheaddons
Web & CMS Pluginscommercial
Latest CVEs
The 15 most recently published vulnerabilities affecting nicheaddons.
- CVE-2024-13362Freemius <= 2.10.1 - Reflected DOM-Based Cross-Site Scripting via url Parameter6.1
- CVE-2025-8150Events Addon for Elementor <= 2.2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Typewriter and Countdown Widgets6.4
- CVE-2025-8212Medical Addon for Elementor <= 1.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Typewriter Widget6.4
- CVE-2024-13854Education Addon for Elementor <= 1.3.1 - Authenticated (Contributor+) Insecure Direct Object Reference via naedu_elementor_template Shortcode4.3
- CVE-2024-12046Medical Addon for Elementor <= 1.6.2 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure via Shortcode4.3
- CVE-2024-12061Events Addon for Elementor <= 2.2.3 - Authenticated (Contributor+) Post Disclosure4.3
- CVE-2024-54316WordPress Restaurant & Cafe Addon for Elementor plugin <= 1.5.8 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2024-54315WordPress Events Addon for Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2024-54314WordPress Primary Addon for Elementor plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2023-47826WordPress Restaurant & Cafe Addon for Elementor plugin <= 1.5.3 - Broken Access Control vulnerability6.5
- CVE-2024-12062Charity Addon for Elementor <= 1.3.3 - Authenticated (Contributor+) Post Disclosure4.3
- CVE-2024-10780Restaurant & Cafe Addon for Elementor <= 1.5.9 - Authenticated (Contributor+) Post Disclosure4.3
- CVE-2024-10670Primary Addon for Elementor <= 1.6.2 - Authenticated (Contributor+) Post Disclosure4.3
- CVE-2024-51938WordPress Charity Addon for Elementor plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2024-51581WordPress Restaurant & Cafe Addon for Elementor plugin <= 1.5.6 - Cross Site Scripting (XSS) vulnerability6.5