Premium Addons for Elementor
Leap13
Developer
4.11.55
Latest version
700,000
Installations
No date
Last updated
Vulnerability history
0 present
29 fixed
2 Mitigation rules
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 4.10.69Jul 3, 2025
- Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget vulnerability<= 4.11.8Jun 11, 2025
- Broken Access Control vulnerability<= 4.10.56Dec 19, 2024
- Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Video Box Widget vulnerability<= 4.10.60Oct 29, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Media Grid Widget vulnerability<= 4.10.52Sep 27, 2024
- Missing Authorization to Authenticated (Contributor+) Arbitrary Content Deletion and Arbitrary Title Update vulnerability<= 4.10.38Aug 8, 2024
- Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Animated Text Widget vulnerability<= 4.10.36Jul 12, 2024
- Cross Site Scripting (XSS) vulnerability<= 4.10.34Jul 9, 2024
- Regular Expressions Denial of Service vulnerability<= 4.10.35Jul 4, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget vulnerability<= 4.10.35Jul 3, 2024
- Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability<= 4.10.33Jun 11, 2024
- Missing Authorization to Information Disclosure vulnerability<= 4.10.31May 31, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 4.10.31May 23, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 4.10.30Apr 30, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 4.10.28Apr 24, 2024
- Cross Site Scripting (XSS) vulnerability<= 4.10.25Apr 22, 2024
- Authenticated Stored Cross-Site Scripting vulnerability<= 4.10.27Apr 11, 2024
- Authenticated Stored Cross-Site Scripting vulnerability<= 4.10.24Apr 11, 2024
- Authenticated DOM-Based Stored Cross-Site Scripting vulnerability<= 4.10.24Apr 11, 2024
- Authenticated Stored Cross-Site Scripting vulnerability<= 4.10.16Apr 11, 2024
- Sensitive Data Exposure vulnerability<= 4.10.22Apr 5, 2024
- Cross Site Scripting (XSS) vulnerability<= 4.10.16Mar 15, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 4.10.23Mar 14, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Banner, Team Members, and Image Scroll Widgets vulnerability<= 4.10.21Feb 29, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 4.10.18Feb 22, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via onClick Events vulnerability<= 4.10.18Feb 15, 2024
- Cross Site Scripting (XSS) vulnerability<= 4.10.16Feb 2, 2024
- Arbitrary Blog Option Update vulnerability<= 4.5.1Aug 30, 2021
- Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities<= 4.2.7Apr 13, 2021