Vulnerabilidades em Jetmonsters
41 resultadosCVE-2024-5611MEDIUMStratum – Elementor Widgets <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown WidgetEPSS 0.3%CVE-2024-4626MEDIUMJetWidgets For Elementor <= 1.0.17 - Authenticated (Contributor+) Stored Cross-Site Scripting via layout_type and id ParametersEPSS 0.3%CVE-2025-66078CRITICALWordPress Hotel Booking Lite plugin <= 5.2.3 - Remote Code Execution (RCE) vulnerabilityEPSS 0.3%CVE-2024-10872MEDIUMGetwid – Gutenberg Blocks <= 2.0.12 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-6489MEDIUMGetwid – Gutenberg Blocks <= 2.0.10 - Missing Authorization to Google API key updateEPSS 0.3%CVE-2024-10323MEDIUMJetWidgets For Elementor <= 1.0.18 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.3%CVE-2026-32525CRITICALWordPress JetFormBuilder plugin <= 3.5.6.1 - Remote Code Execution (RCE) vulnerabilityEPSS 0.3%CVE-2025-49914MEDIUMWordPress Restaurant Menu by MotoPress plugin <= 2.4.7 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2026-8684MEDIUMMotoPress Hotel Booking <= 6.0.1 - Missing Authorization to Unauthenticated Arbitrary Booking Notes Modification via mphb_update_booking_notes AJAX ActionEPSS 0.3%CVE-2025-58252MEDIUMWordPress Getwid Plugin <= 2.1.2 - Sensitive Data Exposure VulnerabilityEPSS 0.3%CVE-2025-64384MEDIUMWordPress JetFormBuilder plugin <= 3.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-9228MEDIUMTimetable and Event Schedule by MotoPress <= 2.4.16 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure via action_get_event_data FunctionEPSS 0.2%CVE-2025-7845MEDIUMStratum – Elementor Widgets <= 1.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Advanced Google Maps and Image Hotspot WidgetsEPSS 0.2%CVE-2025-48258MEDIUMWordPress Mega Menu Block plugin <= 1.0.6 - Cross Site Scripting (XSS) VulnerabilityEPSS 0.2%CVE-2026-54196MEDIUMWordPress JetFormBuilder plugin <= 3.6.1 - Privilege Escalation vulnerabilityEPSS 0.2%CVE-2024-13642MEDIUMStratum – Elementor Widgets <= 1.4.7 - Authenticated (Contributor+) Stored Cross-Site Scripting Vulnerability via Image Hotspot WidgetEPSS 0.2%CVE-2025-8195MEDIUMJetWidgets For Elementor <= 1.0.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison and Subscribe WidgetsEPSS 0.2%CVE-2025-11991MEDIUMJetFormBuilder <= 3.5.3 - Missing Authorization to Unauthenticated Form GenerationEPSS 0.2%CVE-2025-69013MEDIUMWordPress Stratum plugin <= 1.6.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-54195HIGHWordPress JetFormBuilder plugin <= 3.6.0.1 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%