CVE-2025-11536 | Element Pack Addons for Elementor Plugin up to 8.2.5 on WordPress wp_ajax_import_elementor_template server-side request forgery

Inserito da Angelo Barbosa | Ott 20, 2025 | CVE

A vulnerability was found in Element Pack Addons for Elementor Plugin up to 8.2.5 on WordPress. It has been rated as critical. The affected element is the function wp_ajax_import_elementor_template. Performing manipulation results in server-side request forgery.

This vulnerability is cataloged as CVE-2025-11536. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-11536 | Element Pack Addons for Elementor Plugin up to 8.2.5 on WordPress wp_ajax_import_elementor_template server-side request forgery

Post correlati

CVE-2025-4027 | PHPGurukul Old Age Home Management System 1.0 /admin/rules.php pagetitle sql injection

CVE-2025-5140 | Seeyon Zhiyuan OA Web Application System up to 8.1 SP2 ThirdMenuController.class this.oursNetService.getData url server-side request forgery

CVE-2024-35300 | JetBrains TeamCity prior 2024.03.1 Update Page cross site scripting

CVE-2024-51993 | Combodo iTop up to 3.1.x cleartext storage (GHSA-9mq5-349x-x427)