PowerPack Addons for Elementor (Free Widgets, Extensions and Templates)

Vulnerabilities 14Slug powerpack-lite-for-elementorLatest version 2.10.2WordPress.org →

Minimum safe version

2.9.10

Update to 2.9.10 or later to address 14 fixable vulnerabilities

Latest available2.10.2 ✓

Medium 6.4

2025-09-10< 2.9.5

PowerPack Lite for Elementor <= 2.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting Via 'cursor_url'

EUVD Wordfence CVE

Medium 6.5

2026-03-13< 2.9.10

CVE-2026-32430

CVE Wordfence

Medium 6.4

2025-04-01< 2.9.1

PowerPack Elementor Addons (Free Widgets, Extensions and Templates) <= 2.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

EUVD Wordfence CVE

Medium 4.3

2024-12-06< 2.8.2

CVE-2024-10692

CVE Patchstack Wordfence

Medium 5.4

2024-06-13< 2.7.21

CVE-2024-5787

CVE Patchstack Wordfence

Medium 5.4

2024-05-30< 2.7.20

CVE-2024-5327

CVE Wordfence Patchstack

Medium 5.4

2024-04-09< 2.7.19

CVE-2024-2492

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-03-30< 2.7.18

CVE-2024-2491

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-20< 2.7.16

CVE-2024-1411

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-07< 2.7.15

CVE-2024-1055

CVE Wordfence Patchstack WPScan

Medium 4.3

2024-01-03< 2.7.14

CVE-2023-6984

CVE Patchstack Wordfence WPScan

N/A

2021-04-13< 2.3.2

WordPress PowerPack Addons for Elementor plugin <= 2.3.1 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

Patchstack

Medium 5.4

2021-05-05< 2.3.2

CVE-2021-24263

CVE Wordfence WPScan

Medium 6.1

2022-01-03< 2.6.2

CVE-2021-25027

CVE Patchstack Wordfence WPScan