Happy Addons for Elementor
HappyMonster
Developer
3.20.1
Latest version
400,000
Installations
Sep 15, 2025
Last updated
Vulnerability history
0 present
24 fixed
0 Mitigation rules
- Cross Site Scripting (XSS) Vulnerability<= 3.16.2Mar 27, 2025
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 3.15.1Jan 7, 2025
- Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison vulnerability<= 3.12.5Nov 12, 2024
- Broken Access Control vulnerability<= 3.12.3Oct 13, 2024
- Cross Site Scripting (XSS) vulnerability<= 3.12.0Sep 30, 2024
- Authenticated (Contributor+) Sensitive Information Exposure vulnerability<= 3.12.2Sep 25, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via PDF View Widget vulnerability<= 3.11.2Jul 29, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Gradient Heading Widget vulnerability<= 3.11.1Jul 1, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Post Navigation Widget vulnerability<= 3.10.9May 31, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via _id Parameter vulnerability<= 3.10.8May 20, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Image Stack Group Widget vulnerability<= 3.10.7May 16, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Calendly Widget vulnerability<= 3.10.6Apr 26, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via HTML Tags vulnerability<= 3.10.5Apr 22, 2024
- Cross Site Scripting (XSS) vulnerability<= 3.10.4Apr 19, 2024
- Incorrect Authorization to Information Exposure vulnerability<= 3.10.4Apr 17, 2024
- Cross Site Scripting (XSS) vulnerability<= 3.10.1Mar 15, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Archive Title Widget vulnerability<= 3.10.3Mar 7, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Author Meta Widget vulnerability<= 3.10.3Mar 7, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 3.10.1Feb 29, 2024
- Broken Access Control on Post Clone vulnerability<= 3.10.1Feb 2, 2024
- Reflected Cross-Site Scripting vulnerability<= 3.9.1.1Jan 5, 2024
- Server Side Request Forgery (SSRF) vulnerability<= 3.9.1.1Dec 27, 2023
- Cross Site Request Forgery (CSRF) vulnerability<= 3.8.2Mar 29, 2023
- Cross-Site Request Forgery (CSRF) vulnerability<= 3.7.2Mar 21, 2023