CVE-2024-6627

Published July 27th, 2024

View on NVD ↗

CVSS v3

6.4

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's PDF View widget in all versions up to, and including, 3.11.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Happy Addons for Elementor

<a href="https://happyaddons.com/" rel="nofollow ugc">Happy Addons for Elementor</a> is One of best Elementor Addons comes with Theme Builder that covers free Header Footer, Single Post Template, and Archive Page Builder, with 143+ Free & Pro Widgets & 24+ Features to enhance <a href="https://wordpress.org/plugins/elementor/" rel="ugc">Elementor</a>. Get 70+ full-page Elementor Templates & 500+ Template Blocks. <h3>Useful Links</h3> <a href="https://happyaddons.com/elementor-widgets/" rel="nofollow ugc">Demo</a> | <a href="https://happyaddons.com/docs/" rel="nofollow ugc">Docs</a> | <a href="https://www.youtube.com/channel/UC1-e7ewkKB1Dao1U90QFQFA" rel="nofollow ugc">Videos</a> | <a href="https://happyaddons.com/happy-support/" rel="nofollow ugc">Support</a> | <a href="https://happyaddons.com/roadmaps/#ideas" rel="nofollow ugc">IdeaSharing</a> | <a href="https://www.facebook.com/groups/HappyAddonsCommunity" rel="nofollow ugc">FacebookGroup</a> | <a href="https://happyaddons.com/pricing/" rel="nofollow ugc">Get Pro</a> <h3>Widgets In Free Version</h3> <ul> <li><a href="https://demo.happyaddons.com/elementor-card-widget-demo/" rel="nofollow ugc">Card</a>: Showcase products, articles, news.</li> <li><a href="https://demo.happyaddons.com/elementor-info-box-widget-demo/" rel="nofollow ugc">Info Box</a>: Create information boxes.</li> <li><a href="https://demo.happyaddons.com/elementor-icon-box-widget-demo/" rel="nofollow ugc">Icon Box</a>: Show info in iconic style.</li> <li><a href="https://demo.happyaddons.com/elementor-skill-bars-widget-demo/" rel="nofollow ugc">Skill Bars</a>: Showcase progressive information.</li> <li><a href="https://demo.happyaddons.com/elementor-review-widget-demo/" rel="nofollow ugc">Review</a>: Add feedback, reviews, & ratings.</li> <li><a href="https://demo.happyaddons.com/elementor-image-compare-widget-demo/" rel="nofollow ugc">Image Compare</a>: Showcase before/after images.</li> <li><a href="https://demo.happyaddons.com/elementor-gradient-heading-widget-demo/" rel="nofollow ugc">Gradient Heading</a>: Add gradient to headlines.</li> <li><a href="https://demo.happyaddons.com/elementor-team-member-widget-demo/" rel="nofollow ugc">Team Member</a>: Showcase team members.</li> <li><a href="https://demo.happyaddons.com/elementor-dual-button-widget-demo/" rel="nofollow ugc">Dual Button</a>: Add two buttons within one container.</li> <li><a href="https://demo.happyaddons.com/elementor-number-widget-demo/" rel="nofollow ugc">Number</a>: Create number blocks.</li> <li><a href="https://demo.happyaddons.com/elementor-justified-grid-widget-demo/" rel="nofollow ugc">Justified Grid</a>: Create isotope gallery.</li> <li><a href="https://demo.happyaddons.com/elementor-testimonial-widget-demo/" rel="nofollow ugc">Testimonial</a>: Add testimonial sections.</li> <li><a href="https://demo.happyaddons.com/elementor-logo-grid-widget-demo" rel="nofollow ugc">Logo Grid</a>: Show logos in grid.</li> <li><a href="https://demo.happyaddons.com/elementor-slider-widget-demo/" rel="nofollow ugc">Slider</a>: Create sliders with animations.</li> <li><a href="https://demo.happyaddons.com/elementor-carousel-widget-demo/" rel="nofollow ugc">Carousel</a>: Create text/image carousels.</li> <li><a href="https://demo.happyaddons.com/elementor-image-grid-widget-demo/" rel="nofollow ugc">Image Grid</a>: Create a simple image-grid.</li> <li><a href="https://demo.happyaddons.com/elementor-step-flow-widget-demo/" rel="nofollow ugc">Step Flow</a>: Step-by-step visual diagram & instructions.</li> <li><a href="https://demo.happyaddons.com/elementor-fun-factor-widget-demo/" rel="nofollow ugc">Fun-Factor</a>: It’s a counter widget.</li> <li><a href="https://demo.happyaddons.com/elementor-calendly-widget-demo/" rel="nofollow ugc">Calendly</a>: Integrate Calendly within site.</li> <li><a href="https://demo.happyaddons.com/elementor-news-ticker-widget-demo/" rel="nofollow ugc">News Ticker</a>: Showcase content like news websites.</li> <li><a href="https://demo.happyaddons.com/elementor-social-icon-widget-demo/" rel="nofollow ugc">Social Icon</a>: Add social links with it.</li> <li><a href="https://demo.happyaddons.com/elementor-twitter-feed-widget-demo/" rel="nofollow ugc">Twitter Feed</a>: Bring Twitter-feed within site.</li> <li><a href="https://demo.happyaddons.com/elementor-bar-chart-widget-demo/" rel="nofollow ugc">Bar-Chart</a>: Display stats in bar-charts.</li> <li><a href="https://demo.happyaddons.com/elementor-360-rotation-widget-demo/" rel="nofollow ugc">360° Rotation</a>: Create 360-Degree rotated images.</li> <li><a href="https://demo.happyaddons.com/elementor-datatable-widget-demo/" rel="nofollow ugc">Data Table</a>: Create data-table within Elementor Editor.</li> <li><a href="https://demo.happyaddons.com/elementor-pricing-table-widget-demo/" rel="nofollow ugc">Pricing Table Lite</a>: Build pricing table.</li> <li><a href="https://demo.happyaddons.com/elementor-flip-box-widget-demo/" rel="nofollow ugc">Flip Box Lite</a>: Create flipping items.</li> <li><a href="https://demo.happyaddons.com/elementor-post-tab-widget-demo/" rel="nofollow ugc">Post Tab</a>: Showcase posts within tabs.</li> <li><a href="https://demo.happyaddons.com/elementor-post-list-widget-demo/" rel="nofollow ugc">Post List</a>: List any posts.</li> <li><a href="https://demo.happyaddons.com/elementor-taxonomy-widget-demo/" rel="nofollow ugc">Taxonomy List</a>: Create list of posts – sorting categories, tags.</li> <li><a href="https://demo.happyaddons.com/elementor-horizontal-timeline-widget-demo/" rel="nofollow ugc">Horizontal TimeLine</a>: Design storyline horizontally.</li> <li><a href="https://demo.happyaddons.com/elementor-social-share-widget-demo/" rel="nofollow ugc">Social Share</a>: Add social share system.</li> <li><a href="https://demo.happyaddons.com/elementor-event-calendar-widget-demo/" rel="nofollow ugc">Event Calendar</a>: Add Google Calender, Event Calender Plugin’s Events.</li> <li><a href="https://demo.happyaddons.com/elementor-image-hover-effect-widget-demo/" rel="nofollow ugc">Image Hover Effect</a>: Add 20+ hover effects to images.</li> <li><a href="https://demo.happyaddons.com/elementor-animated-link-widget-demo/" rel="nofollow ugc">Animated Link</a>: Add animated link hover effects.</li> <li><a href="https://demo.happyaddons.com/elementor-mailchimp-widget-demo/" rel="nofollow ugc">Mailchimp Widget</a>: Create mailchimp forms.</li> <li><a href="https://demo.happyaddons.com/elementor-content-switcher-demo/" rel="nofollow ugc">Content Switcher</a>: Toggle sections, pages, or texts.</li> <li><a href="https://demo.happyaddons.com/elementor-image-stack-group-demo/" rel="nofollow ugc">Image Stack Group</a>: Show images in a stack group.</li> <li><a href="https://demo.happyaddons.com/elementor-creative-button-demo/" rel="nofollow ugc">Creative Button</a>: Create buttons along with magnetic effect.</li> <li><a href="https://demo.happyaddons.com/elementor-image-accordion-demo/" rel="nofollow ugc">Image Accordion</a>: Create accordions for images.</li> <li><a href="https://demo.happyaddons.com/elementor-pdf-view-widget-demo/" rel="nofollow ugc">PDF View</a>: PDF Viewer widget.</li> <li><a href="https://demo.happyaddons.com/elementor-contact-form-7-widget-demo/" rel="nofollow ugc">Contact Form 7</a>: Stylize CF7 forms.</li> <li><a href="https://demo.happyaddons.com/elementor-caldera-forms-widget-demo/" rel="nofollow ugc">Caldera Forms</a>: Style Caldera forms.</li> <li><a href="https://demo.happyaddons.com/elementor-we-forms-widget-demo/" rel="nofollow ugc">weForms</a>: Style weForms forms.</li> <li><a href="https://demo.happyaddons.com/elementor-ninja-form-widget-demo/" rel="nofollow ugc">Ninja Forms</a>: Beautify Nina forms.</li> <li><a href="https://demo.happyaddons.com/elementor-wpform-widget-demo/" rel="nofollow ugc">WPForms</a>: Style WPForms.</li> <li><a href="https://demo.happyaddons.com/elementor-gravity-form-widget-demo/" rel="nofollow ugc">Gravity Forms</a>: Customize Gravity Forms.</li> <li><a href="https://demo.happyaddons.com/elementor-fluent-form-widget-demo/" rel="nofollow ugc">WP Fluent Forms</a>: Beautify Fluent forms.</li> <li><a href="https://demo.happyaddons.com/elementor-comparison-table-widget-demo/" rel="nofollow ugc">Comparison Table</a>: Create comparison tables.</li> <li><a href="https://demo.happyaddons.com/elementor-photo-stack-widget-demo/" rel="nofollow ugc">Photo Stack</a>: Create a critical layout of Image stacks.</li> <li><a href="https://demo-x.happyaddons.com/elementor-lordicon-widget-demo/" rel="nofollow ugc">Lord Icon</a>: Add lord icons in site.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/site-logo/" rel="nofollow ugc">Site Logo</a>: Customize site’s logo.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/site-title/" rel="nofollow ugc">Site Title</a>: Design site’s title.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/site-tagline/" rel="nofollow ugc">Site Tagline</a>: Manage site’s tagline.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/nav-menu/" rel="nofollow ugc">Nav Menu</a>: Create and style navigation menus.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/page-title/" rel="nofollow ugc">Page Title</a>: Stylize page titles.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/post-title/" rel="nofollow ugc">Post Title</a>: Add and style post’s title.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/post-excerpt/" rel="nofollow ugc">Post Excerpt</a>: Customize post excerpts.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/post-content/" rel="nofollow ugc">Post Content</a>: Manage and style single post’s content.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/post-featured-image/" rel="nofollow ugc">Featured Image</a>: Add and customize post’s featured image.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/author-boxmeta/" rel="nofollow ugc">Author Box(Meta)</a>: Add & style author’s meta descriptions.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/post-comments/" rel="nofollow ugc">Post Comments</a>: Customize comment section.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/post-navigation/" rel="nofollow ugc">Post Navigation</a>: Add & stylize post navigation.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/post-info/" rel="nofollow ugc">Post Info(Meta)</a>: Add post’s meta information.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/archive-title/" rel="nofollow ugc">Archive Title</a>: Add and style archive page’s title.</li> <li><a href="https://happyaddons.com/docs/happy-theme-builder/theme-building-widgets/archive-post/" rel="nofollow ugc">Archive Posts</a>: Create & style archive posts.</li> <li><a href="https://happyaddons.com/docs/happy-addons-for-elementor/widgets/age-gate/" rel="nofollow ugc">Age Gate</a>: Add age verification popup.</li> <li><a href="https://demo.happyaddons.com/lightbox-demo/" rel="nofollow ugc">Lightbox</a>: Video & image lightbox.</li> <li><a href="https://demo.happyaddons.com/liquid-hover-image-widget-demo/" rel="nofollow ugc">Liquid Hover Image</a>: Add liquid hover effects to images.</li> <li><a href="https://happyaddons.com/docs/happy-addons-for-elementor/widgets/text-scroll/" rel="nofollow ugc">Text Scroll</a>: Add eye-catching scrolling text effects.</li> </ul> <h3>Widgets in HappyAddons Pro</h3> <ul> <li><a href="https://demo.happyaddons.com/elementor-advanced-slider-widget-demo/" rel="nofollow ugc">Advanced Slider</a>: It’s a slider builder.</li> <li><a href="https://demo.happyaddons.com/elementor-happy-mega-menu-widget-demo/" rel="nofollow ugc">Happy Mega Menu</a>: Create MegaMenu with Elementor.</li> <li><a href="https://demo.happyaddons.com/elementor-one-page-navigation-widget-demo/" rel="nofollow ugc">One Page Navigation</a>: Create one-page navigation.</li> <li><a href="https://demo.happyaddons.com/elementor-unfold-widget-demo/" rel="nofollow ugc">Unfold Widget</a>: Create unfold items.</li> <li><a href="https://demo.happyaddons.com/elementor-off-canvas-content-demo/" rel="nofollow ugc">Off-Canvas Content/Menu</a>: Add off-canvas content/menu items.</li> <li><a href="https://demo.happyaddons.com/elementor-feature-list-widget-demo/" rel="nofollow ugc">Feature List</a>: Create beautiful lists items.</li> <li><a href="https://demo.happyaddons.com/elementor-pricing-table-widget-demo/" rel="nofollow ugc">Pricing Table</a>: Create advanced pricing table.</li> <li><a href="https://demo.happyaddons.com/elementor-flip-box-widget-demo-2/" rel="nofollow ugc">Flip Box</a>: Create 3d-flipped items.</li> <li><a href="https://demo.happyaddons.com/elementor-advanced-heading-widget-demo/" rel="nofollow ugc">Advanced Heading</a>: Add multi-layered headings.</li> <li><a href="https://demo.happyaddons.com/elementor-image-hover-box-widget-demo/" rel="nofollow ugc">Hover Box</a>: Show animated items on hovers.</li> <li><a href="https://demo.happyaddons.com/elementor-team-carousel-widget-demo/" rel="nofollow ugc">Team Carousel</a>: Add multiple team members as carousel.</li> <li><a href="https://demo.happyaddons.com/elementor-scrolling-image-widget-demo/" rel="nofollow ugc">Scrolling Image</a>: Add horizontally scrolling images & more.</li> <li><a href="https://demo.happyaddons.com/elementor-advanced-tab-widget-demo/" rel="nofollow ugc">Advanced Tab</a>: It’s tabbed content builder widget.</li> <li><a href="https://demo.happyaddons.com/elementor-advanced-accordion-widget-demo/" rel="nofollow ugc">Advanced Accordion</a>: It’s an accordion builder.</li> <li><a href="https://demo.happyaddons.com/elementor-testimonial-carousel-widget-demo/" rel="nofollow ugc">Testimonial Carousel</a>: Showcase testimonials in carousel.</li> <li><a href="https://demo.happyaddons.com/elementor-logo-carousel-widget-demo/" rel="nofollow ugc">Logo Carousel</a>: Add logos in carousel styles.</li> <li><a href="https://demo.happyaddons.com/elementor-animated-text-widget-demo/" rel="nofollow ugc">Animated Text</a>: Animated headings/texts with it.</li> <li><a href="https://demo.happyaddons.com/elementor-timeline-widget-demo/" rel="nofollow ugc">Timeline</a>: It’s a timeline content maker widget.</li> <li><a href="https://demo.happyaddons.com/elementor-instagram-feed-widget-demo/" rel="nofollow ugc">Instagram Feed</a>: Showcase instagram’s images directly.</li> <li><a href="https://demo.happyaddons.com/elementor-advanced-toggle-widget-demo/" rel="nofollow ugc">Advanced Toggle</a>: Show/hide items on toggle.</li> <li><a href="https://demo.happyaddons.com/elementor-list-group-widget-demo/" rel="nofollow ugc">List Group</a>: Add multiple lists beautifully.</li> <li><a href="https://demo.happyaddons.com/elementor-countdown-widget-demo/" rel="nofollow ugc">Countdown</a>: Set countdown timers.</li> <li><a href="https://demo.happyaddons.com/elementor-source-code-widget-demo/" rel="nofollow ugc">Source Code</a>: Showcase code snippets beautifully.</li> <li><a href="https://demo.happyaddons.com/elementor-promo-box-widget-demo/" rel="nofollow ugc">Promo Box</a>: Add promotional content box.</li> <li><a href="https://demo.happyaddons.com/elementor-hot-spot-widgets-demo/" rel="nofollow ugc">Hot Spot</a>: Create Hot spot images/items.</li> <li><a href="https://demo.happyaddons.com/elementor-price-menu-widget-demo/" rel="nofollow ugc">Price Menu</a>: Display restaurant food menu list.</li> <li><a href="https://demo.happyaddons.com/elementor-business-hour-widget-demo/" rel="nofollow ugc">Business Hour</a>: Show the business hours in a tabular style.</li> <li><a href="https://demo.happyaddons.com/elementor-line-chart-widget-demo/" rel="nofollow ugc">Line Chart</a>: Showcase stats in line chart style.</li> <li><a href="https://demo.happyaddons.com/elementor-pie-doughnut-chart-widget-demo/" rel="nofollow ugc">Pie & Doughnut Chart</a>: Crate animated pie charts.</li> <li><a href="https://demo.happyaddons.com/elementor-polar-area-chart-widget-demo/" rel="nofollow ugc">Polar Area Chart</a>: Create polar area charts.</li> <li><a href="https://demo.happyaddons.com/elementor-radar-chart-widget-demo/" rel="nofollow ugc">Radar Chart</a>: Display data in radar chart styles.</li> <li><a href="https://demo.happyaddons.com/elementor-facebook-feed-widget-demo/" rel="nofollow ugc">Facebook Feed</a>: Add facebook feed in site.</li> <li><a href="https://demo.happyaddons.com/elementor-twitter-feed-carousel-widget-demo/" rel="nofollow ugc">Twitter Feed Carousel</a>: Create twitter feed carousels.</li> <li><a href="https://demo.happyaddons.com/elementor-breadcrumb-widget-demo/" rel="nofollow ugc">Breadcrumbs</a>: Visualize site’s breadcrumbs.</li> <li><a href="https://demo.happyaddons.com/elementor-sticky-video-widget-demo/" rel="nofollow ugc">Sticky Video</a>: Video player with sticky/picture-in-picture feature.</li> <li><a href="https://demo.happyaddons.com/elementor-advanced-datatable-widget-demo/" rel="nofollow ugc">Advanced Data table</a>: Create Data Table with GoogleSheets, TablePress, CSV, & Local Database.</li> <li><a href="https://demo.happyaddons.com/elementor-modal-popup-widget-demo/" rel="nofollow ugc">Modal Popup</a>: Create click-triggered Popups.</li> <li><a href="https://demo.happyaddons.com/single-image-scroll-widget-demo/" rel="nofollow ugc">Single Image Scroll</a>: Scroll on hover effect on long image.</li> <li><a href="https://demo.happyaddons.com/elementor-post-grid-widget-demo/" rel="nofollow ugc">Post G

WordPress Plugin Directory

13.5M