Exposición de Elementor
Page builders, WordPress plugins702
score de exposición
960.635
sitios usan
0
en explotación
46
críticos
CVEs
1532 resultadosCVE-2024-51856MEDIUMWordPress Moose Elementor Kit plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2023-37982MEDIUMWordPress Integration for Contact Form 7 and Salesforce Plugin <= 1.3.3 is vulnerable to Open RedirectionEPSS 0.4%CVE-2024-6824MEDIUMPremium Addons for Elementor <= 4.10.38 - Missing Authorization to Authenticated (Contributor+) Arbitrary Content Deletion and Arbitrary Title UpdateEPSS 0.4%CVE-2023-52214MEDIUMWordPress Void Contact Form 7 Widget For Elementor Page Builder plugin <= 2.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-1997MEDIUMPremium Addons PRO <= 2.9.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Messenger Chat WidgetEPSS 0.4%CVE-2024-4698MEDIUMTestimonial Carousel For Elementor <= 10.1.1 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.4%CVE-2024-4865MEDIUMHappy Addons for Elementor <= 3.10.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via _id ParameterEPSS 0.4%CVE-2023-48756HIGHWordPress JetBlocks For Elementor Plugin <= 1.3.8 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2024-34415MEDIUMWordPress Thim Elementor Kit plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-4615MEDIUMElespare – Blog, Magazine and Newspaper Addons for Elementor with Templates, Widgets, Kits, and Header/Footer Builder. One Click Import: No Coding Required! <= 3.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Horizontal Nav Menu WidgetEPSS 0.4%CVE-2024-4666MEDIUMBorderless - Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple WidgetsEPSS 0.4%CVE-2024-10356MEDIUMElementsReady Addons for Elementor <= 6.4.8 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor TemplatesEPSS 0.4%CVE-2023-47680MEDIUMWordPress Qi Addons For Elementor Plugin <= 1.6.3 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2024-34432MEDIUMWordPress Better Elementor Addons plugin <= 1.4.4 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2025-39588CRITICALWordPress Ultimate Store Kit Elementor Addons plugin <= 2.4.0 - Deserialization of untrusted data VulnerabilityEPSS 0.4%CVE-2025-10380HIGHAdvanced Views – Display Posts, Custom Fields, and More <= 3.7.19 - Authenticated (Author+) Remote Code Execution via SSTIEPSS 0.4%CVE-2022-45831HIGHWordPress Image Hover Effects - Caption Hover with Carousel Plugin <= 2.8 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2024-32721MEDIUMWordPress Jeg Elementor Kit plugin <= 2.6.3 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-2399MEDIUMPremium Addons for Elementor <= 4.10.23 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.4%CVE-2026-0825MEDIUMDatabase for Contact Form 7, WPforms, Elementor forms <= 1.4.5 - Missing Authorization to Unauthenticated Form Data Exfiltration via CSV ExportEPSS 0.4%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →