Source evidence

Cross Site Scripting (XSS) vulnerability

Themesflat Addons For Elementor · support · 2025-04-07T15:35:00+00:00

Themesflat Addons For Elementor plugin evidence original source source API

complaintsentiment

highseverity

0.97relevance

1replies

Evidence linked to opportunitycommercial context

Proof Health

Open evidence

Commercial opportunities need traceable source links before they are treated as build-worthy.

4 / 27 rows with source links

14.8% of this page's analysis has direct source links.

0 build-decision rows missing links

0 rows here require auditable proof before promotion.

23 rows with no attached evidence

0 rows have source counts but still need direct links.

Conversation

support

jesusdlg unresolved

Hello, Defender Pro is giving me this vulnerability #WordPress Themesflat Addons For Elementor plugin <= 2.2.5 – Cross Site Scripting (XSS) vulnerability -Vulnerability type: Cross Site Scripting (XSS) -No Update Available https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/themesflat-addons-for-elementor/themesflat-addons-for-elementor-224-authenticated-contributor-stored-cross-site-scripting Any plans to get an update soon? Thank you! Hi there, This warning issue has already been fixed and included in the latest version 2.2.5. Please update the add-ons to the latest version. If you need any help, please let me know. Thank you

Commercial Context

Opportunity

agency visual QA and update safety

Widget visual QA and update safety for preventing client-site regressions before updates or edits go live

Buyer: site builders and agencies

Wedge: detect widget layout regressions, widget breakage, and client-visible update issues

Proof Blocked card complete market

Analysis

heuristic-v1

Summary: Cross Site Scripting (XSS) vulnerability: users show security, bugs, compatibility pain that may indicate a product gap.

Evidence quote: Cross Site Scripting (XSS) vulnerability Hello, Defender Pro is giving me this vulnerability #WordPress Themesflat Addons For Elementor plugin <= 2.2.5 – Cross Site Scripting (XSS) vulnerability -Vulnerability type: Cross Site Scripting (XSS) -No Update Available https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/themesflat-addons-for-e

Affected feature: elementor

security bugs compatibility support

Plugin

API

Themesflat Addons For Elementor

50.0K active installs · 706.4K downloads · rating 40.0

addons elementor elementor addon themesflat widget

Comments

1 shown

helpdeskthemesflat 2025-04-08T01:27:00+00:00

Hi there, This warning issue has already been fixed and included in the latest version 2.2.5. Please update the add-ons to the latest version. If you need any help, please let me know. Thank you