CVE-2026-32430

Name of the Vulnerable Software and Affected Versions IdeaBox Creations PowerPack Addons for Elementor versions through 2.9.9

Description The software contains a flaw related to improper input handling during web page generation, specifically a cross-site scripting issue. This allows for stored cross-site scripting (XSS) attacks. The vulnerable component is powerpack-lite-for-elementor.

Recommendations Versions prior to and including 2.9.9 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.