Xpro Elementor Addons
Xpro
Developer
1.4.27
Latest version
30,000
Installations
No date
Last updated
Vulnerability history
0 present
18 patched
1 Mitigation rules
- WordPress Xpro Addons - 140+ Widgets for Elementor plugin <= 1.4.20 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 1.4.204 hours ago
- WordPress Xpro Addons - 140+ Widgets for Elementor plugin <= 1.4.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Icon Box Widget vulnerability<= 1.4.245 hours ago
- WordPress Xpro Addons - 140+ Widgets for Elementor plugin <= 1.4.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Scroller Widget box link vulnerability<= 1.4.2426/02/2026
- Arbitrary File Upload vulnerability<= 1.4.19.119/01/2026
- Authenticated (Contributor+) Stored Cross-Site Scripting via 'Site Title' widget vulnerability<= 1.4.7.131/12/2025
- Cross Site Scripting (XSS) vulnerability<= 1.4.19.106/12/2025
- Cross Site Scripting (XSS) Vulnerability<= 1.4.1727/08/2025
- Cross Site Scripting (XSS) vulnerability<= 1.4.1004/04/2025
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 1.4.6.708/03/2025
- Authenticated (Contributor+) Post Disclosure via Post Duplication vulnerability<= 1.4.6.207/01/2025
- Cross Site Scripting (XSS) vulnerability<= 1.4.6.505/12/2024
- Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template vulnerability<= 1.4.605/11/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Post Grid Widget vulnerability<= 1.4.4.327/08/2024
- Cross Site Scripting (XSS) vulnerability<= 1.4.4.207/08/2024
- Authenticated (Contributor+) PHP Object Injection vulnerability<= 1.4.3.124/05/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability<= 1.4.315/05/2024
- Cross Site Scripting (XSS) vulnerability<= 1.4.3.107/05/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 1.4.229/03/2024