Exposure of Elementor
Page builders, WordPress plugins696
exposure score
960,635
sites use
0
exploited
46
critical
CVEs
1,530 resultsCVE-2023-0691MEDIUMMetform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via mf_last_name shortcodeEPSS 0.6%CVE-2022-4709MEDIUMRoyal Elementor Addons <= 1.3.59 - Insufficient Access Control to Template Kit ImportEPSS 0.6%CVE-2022-4708MEDIUMRoyal Elementor Addons <= 1.3.59 - Insufficient Access Control to Template Conditions ModificationEPSS 0.6%CVE-2022-4705MEDIUMRoyal Elementor Addons <= 1.3.59 - Insufficient Access Control to Template ActivationEPSS 0.6%CVE-2024-4156MEDIUMEssential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.17 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.6%CVE-2024-1387MEDIUMHappy Addons for Elementor <= 3.10.4 - Incorrect Authorization to Information ExposureEPSS 0.6%CVE-2024-4471HIGH140+ Widgets | Best Addons For Elementor – FREE <= 1.4.3.1 - Authenticated (Contributor+) PHP Object InjectionEPSS 0.6%CVE-2024-4574MEDIUMGraphina – Elementor Charts and Graphs <= 1.8.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple WidgetsEPSS 0.6%CVE-2026-3132HIGHMaster Addons for Elementor Premium <= 2.1.3 - Authenticated (Subscriber+) Remote Code Execution via render_previewEPSS 0.6%CVE-2023-2189MEDIUMElementor Addons, Widgets and Enhancements – Stax <= 1.4.3 - Missing Authorization in toggle_widgetEPSS 0.6%CVE-2024-2203MEDIUMThe Plus Addons for Elementor <= 5.4.1 - Authenticated (Contributor+) Local File Inclusion via Clients WidgetEPSS 0.6%CVE-2024-3675MEDIUMRoyal Elementor Addons and Templates <= 1.3.971 - Authenticated (Contributor+) Stored Cross-Site Scripting via Flip Carousel, Flip Box, Post Grid, and Taxonomy List Widget AttributesEPSS 0.6%CVE-2024-2030MEDIUMDatabase for Contact Form 7, WPforms, Elementor forms <= 1.3.3 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcodeEPSS 0.6%CVE-2021-24262—WooLentor - WooCommerce Elementor Addons + Builder < 1.8.6 - Contributor+ Stored XSSEPSS 0.6%CVE-2021-24271—Ultimate Addons for Elementor < 1.30.0 - Contributor+ Stored XSSEPSS 0.6%CVE-2021-24259—Elementor Addon Elements < 1.11.2 - Contributor+ Stored XSSEPSS 0.6%CVE-2021-24273—Clever Addons for Elementor < 2.1.0 - Contributor+ Stored XSSEPSS 0.6%CVE-2021-24270—DethemeKit For Elementor < 1.5.5.5 - Contributor+ Stored XSSEPSS 0.6%CVE-2021-24269—Sina Extension for Elementor < 3.3.12 - Contributor+ Stored XSSEPSS 0.6%CVE-2021-24257—Premium Addons for Elementor < 4.2.8 - Contributor+ Stored Cross-Site Scripting (XSS)EPSS 0.6%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →