CVE-2025-0968 | xpeedstudio ElementsKit Elementor Addons Plugin up to 3.4.0 on WordPress get_megamenu_content access control

Inserito da Angelo Barbosa | Feb 19, 2025 | CVE

A vulnerability has been found in xpeedstudio ElementsKit Elementor Addons Plugin up to 3.4.0 on WordPress and classified as critical. This vulnerability affects the function get_megamenu_content. The manipulation leads to improper access controls.

This vulnerability was named CVE-2025-0968. The attack can be initiated remotely. There is no exploit available.

CVE-2025-0968 | xpeedstudio ElementsKit Elementor Addons Plugin up to 3.4.0 on WordPress get_megamenu_content access control

Post correlati

CVE-2023-48244 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 URL cross site scripting

CVE-2024-6595 | GitLab Community Edition/Enterprise Edition up to 16.11.5/17.0.3/17.1.1 uncontrolled search path (Issue 417975)

CVE-2025-23496 | WP FPO Plugin up to 1.0 on WordPress cross site scripting

CVE-2024-57951 | Linux Kernel up to 6.12.10 hrtimers_prepare_cpu state issue