Exposure of Elementor
Page builders, WordPress plugins696
exposure score
960,635
sites use
0
exploited
46
critical
CVEs
1,530 resultsCVE-2022-4710MEDIUMRoyal Elementor Addons <= 1.3.59 - Reflected Cross-Site ScriptingEPSS 0.7%CVE-2024-24934HIGHWordPress Elementor plugin <= 3.19.0 - Arbitrary File Deletion and Phar Deserialization vulnerabilityEPSS 0.7%CVE-2025-14155MEDIUMPremium Addons for Elementor <= 4.11.53 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'get_template_content'EPSS 0.7%CVE-2023-0721HIGHMetform Elementor Contact Form Builder <= 3.3.0 - Unauthenticated CSV InjectionEPSS 0.7%CVE-2023-5922HIGHRoyal Elementor Addons and Templates < 1.3.81 - Unauthenticated Arbitrary Post ReadEPSS 0.7%CVE-2024-4484MEDIUMThe Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce <= 5.5.2 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.7%CVE-2024-52496HIGHWordPress Absolute Addons For Elementor plugin <= 1.0.14 - Local File Inclusion vulnerabilityEPSS 0.7%CVE-2024-52499HIGHWordPress Pricing table addon for elementor plugin <= 1.0.0 - Local File Inclusion vulnerabilityEPSS 0.7%CVE-2023-0085MEDIUMMetform Elementor Contact Form Builder <= 3.2.1 - reCaptcha Protection BypassEPSS 0.7%CVE-2024-5345HIGHResponsive Owl Carousel for Elementor <= 1.2.0 - Local File InclusionEPSS 0.7%CVE-2022-4711MEDIUMRoyal Elementor Addons <= 1.3.59 - Insufficient Access Control to Menu Settings UpdateEPSS 0.7%CVE-2024-4371CRITICALCoDesigner WooCommerce Builder for Elementor – Customize Checkout, Shop, Email, Products & More <= 4.4.1 - Unauthenticated PHP Object InjectionEPSS 0.7%CVE-2024-11104HIGHSky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blogs) <= 2.6.2 - Missing Authorization to Authenticated (Subscriber+) Limited Arbitrary Options UpdateEPSS 0.7%CVE-2024-13353HIGHResponsive Addons for Elementor – Free Elementor Addons Plugin and Elementor Templates <= 1.6.4 - Authenticated (Contributor+) Local File InclusionEPSS 0.7%CVE-2025-22786HIGHWordPress ElementInvader Addons for Elementor plugin <= 1.2.6 - Local File Inclusion vulnerabilityEPSS 0.7%CVE-2021-24261—HT Mega - Absolute Addons for Elementor Page Builder < 1.5.7 - Contributor+ Stored XSSEPSS 0.7%CVE-2021-24260—Livemesh Addons for Elementor < 6.8 - Contributor+ Stored XSSEPSS 0.7%CVE-2021-24267—All-in-One Addons for Elementor - WidgetKit < 2.3.10 - Contributor+ Stored XSSEPSS 0.7%CVE-2021-24263—PowerPack Addons for Elementor < 2.3.2 - Contributor+ Stored XSSEPSS 0.7%CVE-2026-9843HIGHDatabase for Contact Form 7, WPforms, Elementor forms <= 1.5.1 - Unauthenticated Arbitrary File Deletion via CF7 File Field POST ValueEPSS 0.7%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →