Exposición de Elementor
Page builders, WordPress plugins702
score de exposición
960.635
sitios usan
0
en explotación
46
críticos
CVEs
1532 resultadosCVE-2024-1397MEDIUMHT Mega <= 2.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via titleTagEPSS 0.5%CVE-2025-58973HIGHWordPress Easy Elementor Addons Plugin <= 2.2.8 - Local File Inclusion VulnerabilityEPSS 0.5%CVE-2024-6170MEDIUMUnlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'email'EPSS 0.5%CVE-2023-0034MEDIUMJetWidgets For Elementor < 1.0.14 - Contributor+ Stored XSS via ShortcodeEPSS 0.5%CVE-2024-53816MEDIUMWordPress Tutor LMS Elementor Addons plugin <= 2.1.5 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2026-49105CRITICALWordPress WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms plugin <= 1.1.4 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2026-9691CRITICALWordPress Integration for ActiveCampaign and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.1.1 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2026-49085CRITICALWordPress WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms plugin <= 1.1.4 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2026-49104CRITICALWordPress Integration for Keap/infusionsoft and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin <= 1.2.1 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2023-48750MEDIUMWordPress Void Elementor Post Grid Addon for Elementor Page builder plugin <= 2.1.10 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-3489MEDIUMExclusive Addons for Elementor <= 2.6.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Expired TitleEPSS 0.5%CVE-2025-8081MEDIUMElementor <= 3.30.2 - Authenticated (Administrator+) Arbitrary File Read via Image ImportEPSS 0.5%CVE-2024-10050MEDIUMElementor Header & Footer Builder <= 1.6.43 - Authenticated (Contributor+) Information Disclosure via ShortcodeEPSS 0.5%CVE-2022-4661—Woo Products Widgets For Elementor < 1.0.8 - Contributor+ Stored XSS via ShortcodeEPSS 0.5%CVE-2022-4256MEDIUMAll-in-One Addons for Elementor - WidgetKit < 2.4.4 - Admin+ Stored XSSEPSS 0.5%CVE-2022-3862MEDIUMLivemesh Addons for Elementor < 7.2.4 - Admin+ Stored XSSEPSS 0.5%CVE-2024-1236MEDIUMEssential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.8 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-2042MEDIUMElementsKit Elementor addons <= 3.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Accordion WidgetEPSS 0.5%CVE-2024-10778MEDIUMBuddyPress Builder for Elementor – BuddyBuilder <= 1.7.4 - Authenticated (Contributor+) Post DisclosureEPSS 0.5%CVE-2025-13067HIGHRoyal Addons for Elementor <= 1.7.1049 - Authenticated (Author+) Arbitrary File Upload via main.php Upload BypassEPSS 0.5%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →