Wordfence Intelligence   >   Vulnerability Researchers   >   Gab

Gab

58
All Time Ranking
74
All Time Discoveries
0
90 Day Published Submissions
N/A
Last Published Submission

Showing 1-20 of 74 Vulnerabilities

Easy Elementor Addons <= 2.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2025-26761
Feb 14, 2025
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2025-22644
Feb 3, 2025
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
LucidLMS <= 1.0.5 - Reflected Cross-Site Scripting
6.1
CVE-2025-22498
Jan 7, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Alpha Price Table For Elementor <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2025-22500
Jan 7, 2025
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Image Hover Effects for Elementor <= 1.0.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2025-22323
Jan 3, 2025
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
ShopElement <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-56260
Dec 30, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
WPMozo Addons Lite for Elementor <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-56221
Dec 19, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
SaasPricing <= 1.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-56231
Dec 19, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Coupon <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-56235
Dec 19, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Gutensee <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54360
Dec 11, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Hello Event Widgets For Elementor <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54338
Dec 11, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Quran Phrases About Most People Shortcodes <= 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54334
Dec 11, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Advanced Blog Post Block <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54287
Dec 11, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Nias course <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54277
Dec 11, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Radius Blocks – WordPress Gutenberg Blocks <= 2.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54272
Dec 11, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Unlock Addons for Elementor <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54230
Dec 5, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Wot Elementor Widgets <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54228
Dec 5, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
ABCBiz Addons for Elementor <= 2.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54247
Dec 5, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
News Kit Elementor Addons <= 1.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54260
Dec 5, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Advanced Element Bucket Addons for Elementor <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-54210
Dec 2, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Title CVE ID CVSS Vector Date
Easy Elementor Addons <= 2.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2025-26761 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N February 14, 2025
Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2025-22644 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N February 3, 2025
LucidLMS <= 1.0.5 - Reflected Cross-Site Scripting CVE-2025-22498 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N January 7, 2025
Alpha Price Table For Elementor <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2025-22500 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N January 7, 2025
Image Hover Effects for Elementor <= 1.0.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2025-22323 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N January 3, 2025
ShopElement <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-56260 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 30, 2024
WPMozo Addons Lite for Elementor <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-56221 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 19, 2024
SaasPricing <= 1.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-56231 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 19, 2024
Coupon <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-56235 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 19, 2024
Gutensee <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54360 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 11, 2024
Hello Event Widgets For Elementor <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54338 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 11, 2024
Quran Phrases About Most People Shortcodes <= 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54334 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 11, 2024
Advanced Blog Post Block <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54287 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 11, 2024
Nias course <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54277 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 11, 2024
Radius Blocks – WordPress Gutenberg Blocks <= 2.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54272 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 11, 2024
Unlock Addons for Elementor <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54230 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 5, 2024
Wot Elementor Widgets <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54228 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 5, 2024
ABCBiz Addons for Elementor <= 2.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54247 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 5, 2024
News Kit Elementor Addons <= 1.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54260 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 5, 2024
Advanced Element Bucket Addons for Elementor <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-54210 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N December 2, 2024

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

This site uses cookies in accordance with our Privacy Policy.