Ultimate Store Kit Elementor Addons
Approved changes feed: RSS · Atom
cpe:2.3:a:bdthemes:ultimate_store_kit_elementor_addons:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Bdthemes (5429b37a-0acd-5ad1-805d-fa178e11cdda) |
|---|---|
| Product | Ultimate Store Kit Elementor Addons (560d3392-47d1-5377-b6a1-0ea0cb90560e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-69336 |
vulnerable | 2026-06-03 15:11:04.983198 |
WordPress Ultimate Store Kit Elementor Addons plugin <= 2.9.4 - Broken Access Control vulnerability
MEDIUM (4.3)
Missing Authorization vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.9.4.
Published: 2026-01-06T16:36:38.740Z
Updated: 2026-04-28T20:53:47.170Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-58017 |
vulnerable | 2026-06-03 15:06:20.377842 |
WordPress Ultimate Store Kit Elementor Addons plugin <= 2.8.6 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Stored XSS.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.8.6.
Published: 2025-09-22T18:24:03.612Z
Updated: 2026-05-13T00:29:20.127Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-39588 |
vulnerable | 2026-06-03 15:01:02.702319 |
WordPress Ultimate Store Kit Elementor Addons plugin <= 2.4.0 - Deserialization of untrusted data Vulnerability
CRITICAL (9.8)
Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Object Injection.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.4.0.
Published: 2025-04-17T15:46:43.717Z
Updated: 2026-04-28T16:12:35.203Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-32184 |
vulnerable | 2026-06-03 15:00:40.199526 |
WordPress Ultimate Store Kit Elementor Addons plugin <= 2.5.0 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Stored XSS.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.5.0.
Published: 2025-04-04T15:58:58.751Z
Updated: 2026-04-28T16:12:18.268Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-24584 |
vulnerable | 2026-06-03 14:59:56.367020 |
WordPress Ultimate Store Kit Elementor Addons plugin <= 2.3.0 - Broken Access Control vulnerability
MEDIUM (4.3)
Missing Authorization vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.3.0.
Published: 2025-01-27T13:59:48.870Z
Updated: 2026-05-11T23:21:30.379Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4606 |
vulnerable | 2026-06-03 14:57:15.860827 |
WordPress Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder plugin <= 2.0.3 - PHP Object Injection vulnerability
MEDIUM (5.4)
Deserialization of Untrusted Data vulnerability in BdThemes Ultimate Store Kit Elementor Addons.This issue affects Ultimate Store Kit Elementor Addons: from n/a through 2.0.3.
Published: 2024-05-09T11:59:18.569Z
Updated: 2026-04-28T16:10:18.139Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-47629 |
vulnerable | 2026-06-03 14:57:02.087408 |
WordPress Ultimate Store Kit Elementor Addons plugin <= 2.0.5 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Stored XSS.This issue affects Ultimate Store Kit Elementor Addons: from n/a through <= 2.0.5.
Published: 2024-10-05T13:21:53.103Z
Updated: 2026-04-28T16:10:20.426Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43342 |
vulnerable | 2026-06-03 14:56:45.028460 |
WordPress Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin <= 1.6.4 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in BdThemes Ultimate Store Kit Elementor Addons allows Stored XSS.This issue affects Ultimate Store Kit Elementor Addons: from n/a through 1.6.4.
Published: 2024-08-18T13:22:30.283Z
Updated: 2026-04-28T16:10:13.107Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-31357 |
vulnerable | 2026-06-03 14:55:39.505602 |
WordPress Ultimate Store Kit Elementor Addons plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BdThemes Ultimate Store Kit Elementor Addons allows Stored XSS.This issue affects Ultimate Store Kit Elementor Addons: from n/a through 1.5.2.
Published: 2024-04-08T08:51:56.122Z
Updated: 2026-04-28T16:09:31.213Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.