Livemesh Addons by Elementor

Vulnerabilities 31Slug addons-for-elementorLatest version 9.0WordPress.org →

Minimum safe version

8.5.1

Update to 8.5.1 or later to address 28 fixable vulnerabilities

Latest available9.0 ⚠ 3 vulnerabilities have no fix
High 8.8 Unfixed
2026-04-16≤ 9.0

Livemesh Addons by Elementor <= 9.0 - Authenticated (Contributor+) Local File Inclusion via Widget Template Parameter

CVEPatchstackWordfence
Medium 6.4 Unfixed
2026-04-16≤ 9.0

Livemesh Addons by Elementor <= 9.0 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting via Plugin Settings

CVEWordfence
Medium 6.3
2024-10-16< 7.1.4

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE
N/A
2023-07-18< 7.9

WordPress Livemesh Addons for Elementor Plugin < 7.9 is vulnerable to Cross Site Scripting (XSS)

PatchstackCVE
N/A
2019-02-25< 2.6

Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update

Wordfence
N/A
2022-03-04< 7.1.4

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence
Medium 4.8
2023-11-21< 7.2.4

WordPress Livemesh Addons for Elementor Plugin <= 7.2.3 is vulnerable to Cross Site Scripting (XSS)

PatchstackCVEWordfenceWPScan
N/A
< 2.6

Freemius Library &lt; 2.2.4 - Subscriber+ Arbitrary Option Update

WPScan
N/A
2021-04-13< 6.8

WordPress Livemesh Addons for Elementor plugin <= 6.7.1 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

Patchstack
N/A
2022-02-28< 7.1.4

WordPress Livemesh Addons for Elementor plugin <= 7.1.3 - Sensitive Information Disclosure vulnerability

Patchstack
N/A
2022-02-28< 7.1.4

WordPress Livemesh Addons for Elementor plugin <= 7.1.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack