jakariaistauk

1 exploit Active since Jan 2026
CVE-2026-1004 WRITEUP MEDIUM WRITEUP
Essential Addons for Elementor <6.5.5 - Info Disclosure
The Essential Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to and including 6.5.5 via the 'eael_product_quickview_popup' function. This makes it possible for unauthenticated attackers to retrieve WooCommerce product information for products with draft, pending, or private status, which should normally be restricted.
CVSS 5.3