CVE-2024-8681

Published September 27th, 2024

View on NVD ↗

CVSS v3

6.4

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Premium Addons for Elementor – Powerful Elementor Templates & Widgets

<p><strong>Premium Addons for Elementor</strong> supercharges your <a href="https://wordpress.org/plugins/elementor/" rel="ugc">Elementor Page Builder</a> with 90+ Elementor widgets, 550+ pre-made Elementor templates that will give you the ability to build sophisticated websites in less time with no coding required. Both Elementor and Premium Addons plugins take your WordPress website to the next level.</p> <p>It has Elementor elements like <strong>Carousel, Blog Posts List/Slider, Mega Menu Builder, Testimonials, WooCommerce, Search Form, Posts/News Ticker, etc.</strong></p> <p><a href="https://premiumaddons.com/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=demos" rel="nofollow ugc"><strong>Check Elementor Widgets & Addons Demo Pages</strong></a></p> <h3>Useful Links</h3> <p><a href="https://premiumaddons.com/docs/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=docs" rel="nofollow ugc">Docs</a> | <a href="https://www.youtube.com/channel/UCXcJ9BeO2sKKHor7Q9VglTQ" rel="nofollow ugc">Video Tutorials</a> | <a href="https://facebook.com/groups/premiumAddons" rel="nofollow ugc">Facebook Group</a> | <a href="https://premiumaddons.com/pro/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=upgrade-pro" rel="nofollow ugc">Upgrade to Pro</a></p> <h3>KEY FEATURES</h3> <ul> <li>Modular & Lightweight</li> <li>90+ Free and Pro Elementor Widgets</li> <li>17+ Powerful Elementor Addons</li> <li>580+ Ready made Elementor Container & Full Page Templates</li> <li>Carousel & Advanced Media Carousel Widgets</li> <li>Advanced Mega Menu Builder</li> <li>Mobile Menu Builder Widget</li> <li>Magazine Widgets Bundle (Smart Post Listing, Weather Forecast, World Clock, News Ticker, Tags Cloud and Recent Posts Notification)</li> <li>WooCommerce Widgets Bundle (Products Listing, Products Carousel, Categories Listing, Woo CTA, Woo Mini Cart)</li> <li>Advanced Display Conditions Addon</li> <li>Apple’s Liquid Glass Effect & Glassmorphism Addon</li> <li>Equal Height Elementor Containers Addon</li> <li>Lottie Animations Integration</li> <li>Cross Domain Copy Paste Elements</li> <li>Elementor Page and Post Duplicator</li> <li>100% WPML Ready</li> <li>Fully Responsive & Cross Browser Ready</li> </ul> <h3>Performance and Speed Improvements</h3> <p>Premium Addons for Elementor is now much faster than ever. Only the required JS files will be loaded on your page to boost your page loading speed and site performance. All the editor loading issues have been fixed to make your site faster and minimize the time it takes for Elementor editor to load.</p> <h3>New: Liquid Glass Addon</h3> <p>Select between 6 attractive liquid glass and glassmorphism effects to be applied on any Elementor widget or container. It has also been added to be applied on specific parts inside our elements. <a href="https://premiumaddons.com/elementor-liquid-glass-addon/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=glass" rel="nofollow ugc">Check it out now!</a>.</p> <h3>New: WooCommerce Mini-Cart and Categories Listing Widgets</h3> <p>This powerful widget allows your customers to view the products in their shopping cart, change the quantity, remove items and check the total amount without leaving the page. We have also released Woo Categories widget to showcase your Woo categories in four neat skins. Check from <a href="https://premiumaddons.com/elementor-woocommerce-mini-cart-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=woo-mini-cart" rel="nofollow ugc">here</a> and <a href="https://premiumaddons.com/elementor-woocommerce-categories-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=woo-categories" rel="nofollow ugc">here</a>.</p> <h3>New: Mobile Nav Menu Widget</h3> <p>Create a neat mobile menu on your website with just few click with this powerful widget. You can set the click action of each menu item to a link or to open an off-canvas content. <a href="https://premiumaddons.com/elementor-mobile-menu-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=mobile-menu" rel="nofollow ugc">Check it out now!</a>.</p> <h3>New: AJAX Search Form Widget</h3> <p>The ultimate solution to add a search form widget on Elementor websites. Customize the search results, add pagination or carousel and select between three different neat skins. <a href="https://premiumaddons.com/elementor-ajax-search-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=ajax-search" rel="nofollow ugc">Check it out now!</a>.</p> <h3>Animated Shape Divider Addon</h3> <p>Add animated shape dividers for Elementor flexbox containers. You can select between 40+ shape dividers or use a custom SVG code to add your own divider. <a href="https://premiumaddons.com/elementor-animated-shape-divider-addon/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=shape-divider" rel="nofollow ugc">Check it out now!</a>.</p> <h3>Advanced Media Carousel Widget</h3> <p>You can now create carousel using images, videos, Elementor templates to create the carousel you want. Select between four animations and dozens of customization options. <a href="https://premiumaddons.com/elementor-advanced-carousel-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=advanced-carousel" rel="nofollow ugc">Check it out now!</a>.</p> <h3>Elementor Navigation/Mega Menu Widget</h3> <p>Now, you build outstanding navigation menus and mega menus using Premium Navigation/Mega Menu Widget which allows you to select between four different layouts with dozens of options to create a responsive menu. <a href="https://premiumaddons.com/elementor-mega-menu-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=mega-menu" rel="nofollow ugc">Check it out now!</a>.</p> <h3>Elementor Display Conditions</h3> <p>A professional way to manage your website content with specific conditions. You can show/hide content dynamically based on location, browser, operating system, user role, URL parameters, device type, Woocommerce display conditions such as WooCommerce product and WooCommerce shopping cart data, ACF fields, etc. <a href="https://premiumaddons.com/elementor-display-conditions/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=display-conditions" rel="nofollow ugc">Check the demo page</a></p> <h3>Equal Height Feature</h3> <p>Now, you can make your containers, widgets or any selector you want the same height with just ONE click using <a href="https://premiumaddons.com/docs/elementor-column-equal-height/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=equal-height" rel="nofollow ugc">Equal Height feature</a> in container settings -> Advanced tab.</p> <h3>Container and Full Page Elementor Templates</h3> <p>Ever-growing <a href="https://premiumaddons.com/premium-elementor-templates-library/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=templates-library" rel="nofollow ugc">Container/Page Templates Library</a> Available on both Premium Addons Free and PRO versions. Browse, preview, and insert the template you like in your page/post with just ONE click.</p> <h3>Lottie Animations Integration</h3> <p>You can now use <a href="https://premiumaddons.com/elementor-lottie-animations-container-addon/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=lottie-animations" rel="nofollow ugc">Lottie Animations in ALL our widgets</a>. Whatever widget that have an image or icon option now have also the option to add a Lottie animation.</p> <h3>Post and Page Duplicator</h3> <p>Duplicate any post, page or template on your website with just ONE click. Check the documentation article from <a href="https://premiumaddons.com/docs/how-to-use-pa-duplicator/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=duplicator" rel="nofollow ugc">here</a>.</p> <h3>Modular & Instant Loading</h3> <p>Premium Addons for Elementor is fully modular. You can enable/disable specific elements to prevent overloading your website with code you will not actually use which helps your website have a blazing fast performance.</p> <h3>Editor Panel Not Loading</h3> <p><a href="https://premiumaddons.com/docs/fix-elementor-editor-panel-loading-issues/" rel="nofollow ugc">How to resolve Elementor editor panel loading issue when Premium Addons is active</a>.</p> <h3>Elementor Widgets & Addons Included</h3> <h3>Content Widgets</h3> <ul> <li><a href="https://premiumaddons.com/elementor-carousel-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=carousel" rel="nofollow ugc"><strong>Carousel Widget</strong></a> <em>(FREE)</em>: Create a slider of any Elementor content.</li> <li> <p><a href="https://premiumaddons.com/blog-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=blog" rel="nofollow ugc"><strong>Blog Widget</strong></a> <em>(FREE)</em>: Showcase posts or any custom post type in 5 neat skins.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-ajax-search-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=ajax-search" rel="nofollow ugc"><strong>AJAX Search Widget</strong></a> <em>(FREE)</em>: Add search form to your website with custom search query.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-smart-post-listing-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=smart-listing" rel="nofollow ugc"><strong>Smart Post Listing Widget</strong></a> <em>(PRO)</em>: Create any posts layout you want using this widget. You can use it to create any grid layout to show your posts or any custom post type on your website.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-world-clock-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=clock" rel="nofollow ugc"><strong>World Clock Widget</strong></a> <em>(FREE)</em>: This widget helps you to show time from any place. You can use it to show analog/digital clock.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-weather-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=weather" rel="nofollow ugc"><strong>Weather Widget</strong></a> <em>(FREE)</em>: Weather widget is useful for showing weather forecast data by city name or custom coordinates. You can select between three neat layouts with dozens of customization options.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-news-ticker-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=news-ticker" rel="nofollow ugc"><strong>News Ticker Widget</strong></a> <em>(FREE)</em>: Show your posts in an attractive way using this news ticker widget. Select between four different layouts. You can also use the widget to show Gold, Stock and Currencies prices.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-textual-showcase-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=textual-showcase" rel="nofollow ugc"><strong>Textual Showcase Widget</strong></a> <em>(FREE)</em>: Elevate your text into stunning visual art with Elementor Textual Showcase. Experiment with Text, Images, Font Awesome Icons, SVG Draw, and Lottie Animations to craft eye-catching designs. Engage your audience by making your words move, fade, and transform dynamically, leaving a lasting impression.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-tags-cloud-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=tags-cloud" rel="nofollow ugc"><strong>Tags Cloud Widget</strong></a> <em>(FREE)</em>: Showcase tags and categories as cloud, sphere, labeled.</p> </li> <li> <p><a href="https://premiumaddons.com/elementor-recent-posts-notification-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=recent-posts-notification" rel="nofollow ugc"><strong>Recent Posts Notification Widget</strong></a> <em>(FREE)</em>: This widget helps you to show a notification icon on your website to show the latest posts that your website users have not seen yet.</p> </li> <li> <p><a href="https://premiumaddons.com/google-maps-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=google-maps" rel="nofollow ugc"><strong>Google Maps Widget</strong></a> <em>(FREE)</em>: Advanced Google Maps Widget comes with features like adding multiple markers, custom skins, and much more options.</p> </li> <li><a href="https://premiumaddons.com/persons-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=team-members" rel="nofollow ugc"><strong>Team Members Widget</strong></a> <em>(FREE)</em>: Very good widget to list team members, co-workers, etc. Team Members Widget comes with many customization options.</li> <li><a href="https://premiumaddons.com/elementor-tabs-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=tabs" rel="nofollow ugc"><strong>Tabs Widget</strong></a> <em>(PRO)</em>: Create both Vertical and Horizontal tabs with tons of styling features.</li> <li><a href="https://premiumaddons.com/elementor-content-toggle-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=content-switcher" rel="nofollow ugc"><strong>Content Toggle</strong></a> <em>(PRO)</em>: Present multiple content in a smart way.</li> <li><a href="https://premiumaddons.com/elementor-animated-text-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=animated-text" rel="nofollow ugc"><strong>Animated Text Widget</strong></a> <em>(FREE)</em>: The animated Fancy Text Widget comes with very useful options to help you create attractive marketing messages.</li> <li><a href="https://premiumaddons.com/heading-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=heading" rel="nofollow ugc"><strong>Heading Widget</strong></a> <em>(FREE)</em>: Heading Widget has many customization options and ready-made heading styles.</li> <li><a href="https://premiumaddons.com/dual-header-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=dual-heading" rel="nofollow ugc"><strong>Dual Heading Widget</strong></a> <em>(FREE)</em>: Create a headline with 2 different unique styles.</li> </ul> <h3>Image & Video Widgets</h3> <ul> <li><a href="https://premiumaddons.com/elementor-site-logo-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=site-logo" rel="nofollow ugc"><strong>Site Logo Widget</strong></a> <em>(PRO)</em>: Create an attractive logo for your brand using an image, SVG shape, or Lottie Animation with tens of customization options.</li> <li><a href="https://premiumaddons.com/elementor-grid-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=media-gallery" rel="nofollow ugc"><strong>Media Gallery Widget</strong></a> <em>(FREE)</em>: Highly customizable gallery widget that can be used for creating attractive looking image galleries and portfolios.</li> <li><a href="https://premiumaddons.com/elementor-advanced-carousel-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=advanced-media-carousel" rel="nofollow ugc"><strong>Advanced Media Carousel Widget</strong></a> <em>(FREE)</em>: Create advanced carousel using images, videos or Elementor templates.</li> <li><a href="https://premiumaddons.com/elementor-image-scroll-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=image-scroll" rel="nofollow ugc"><strong>Image Scroll Widget</strong></a> <em>(FREE)</em>: Allows you to represent your images in a brand new yet attractive way.</li> <li><a href="https://premiumaddons.com/image-comparison-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=image-comparison" rel="nofollow ugc"><strong>Image Comparison Widget</strong></a> <em>(PRO)</em>: Create vertical or horizontal image comparisons easily using this amazing widget.</li> <li><a href="https://premiumaddons.com/elementor-image-hotspots-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=image-hotspots" rel="nofollow ugc"><strong>Image Hotspots Widget</strong></a> <em>(PRO)</em>: The only Image Hotspots Widget with 100% freehand design experience. Add hotspots to your image using mouse drag n’ drop.</li> <li><a href="https://premiumaddons.com/image-layers-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=image-layers" rel="nofollow ugc"><strong>Image Layers Widget</strong></a> <em>(PRO)</em>: Combine images, Lottie animations and texts.</li> <li><a href="https://premiumaddons.com/elementor-image-accordion-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=image-accordion" rel="nofollow ugc"><strong>Image Accordion Widget</strong></a> <em>(PRO)</em>: Create eye-catching Image Accordions in both vertical and horizontal orientations.</li> <li><a href="https://premiumaddons.com/elementor-video-box-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=video-box" rel="nofollow ugc"><strong>Video Box Widget</strong></a> <em>(FREE)</em>: Bring videos from YouTube, Vimeo, Dailymotion, or upload your own using Video Box Widget. The widget comes with many customization features.</li> </ul> <h3>Container Addons & Widgets</h3> <ul> <li><a href="https://premiumaddons.com/elementor-horizontal-scroll-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=horizontal-scroll" rel="nofollow ugc"><strong>Horizontal Scroll Widget</strong></a> <em>(PRO)</em>: Create horizontal scroll websites with just few clicks.</li> <li><a href="https://premiumaddons.com/vertical-scroll-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=vertical-scroll" rel="nofollow ugc"><strong>Vertical Scroll Widget</strong></a> <em>(FREE)</em>: Create beautiful vertical scroll pages with advanced responsive control options using Premium Vertical Scroll Widget.</li> <li><a href="https://premiumaddons.com/elementor-color-transition-widget/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=background-transition" rel="nofollow ugc"><strong>Background Transition Widget</strong></a> <em>(PRO)</em>: Create fancy, colorful, and eye-catching webpages.</li> <li><a href="https://premiumaddons.com/multi-scroll-widget-for-elementor-page-builder/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=multi-scroll" rel="nofollow ugc"><strong>Multi-Scroll Widget</strong></a> <em>(PRO)</em>: Create attractive multi-scroll effect.</li> <li><a href="https://premiumaddons.com/elementor-custom-mouse-cursor-global-addon/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=custom-mouse-cursor" rel="nofollow ugc"><strong>Custom Mouse Cursor Global Addon</strong></a> <em>(PRO)</em>: Add a custom mouse cursor to any container or widget.</li> <li><a href="https://premiumaddons.com/elementor-magic-scroll-global-addon/?utm_source=wp-repo&utm_medium=link&utm_campaign=readme&utm_content=magic-scroll" rel="nofollow ugc"><strong>Magic Scroll Global Addon</strong></a> <em>(PRO)</em>: Create outstanding scroll animation

WordPress Plugin Directory

60.8M