Exposição de Elementor
Page builders, WordPress plugins696
score de exposição
960.635
sites usam
0
em exploração
46
críticos
CVEs
1.530 resultadosCVE-2024-1974HIGHHT Mega – Absolute Addons For Elementor <= 2.4.5 - Authenticated (Contributor+) Directory TraversalEPSS 1.2%CVE-2025-47492HIGHWordPress Drag and Drop File Upload for Elementor Forms plugin <= 1.4.3 - Arbitrary File Deletion VulnerabilityEPSS 1.2%CVE-2024-2006HIGHPost Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget <= 1.6.7 - Authenticated (Contributor+) PHP Object Injection in outpost_shortcode_metabox_markupEPSS 1.2%CVE-2024-11600HIGHBorderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.6.0 - Authenticated (Administrator+) Remote Code ExecutionEPSS 1.2%CVE-2021-24967—Contact Form & Lead Form Elementor Builder < 1.6.4 - Unauthenticated Stored Cross-Site ScriptingEPSS 1.2%CVE-2025-24752HIGHWordPress Essential Addons for Elementor plugin <= 6.0.14 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 1.2%CVE-2024-1567HIGHRoyal Elementor Addons and Templates <= 1.3.94 - Unauthenticated Limited File UploadEPSS 1.1%CVE-2024-49271CRITICALWordPress Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin <= 1.5.121 - Remote Code Execution (RCE) vulnerabilityEPSS 1.1%CVE-2021-24359—The Plus Addons for Elementor Page Builder < 4.1.11 - Arbitrary Reset Pwd Email SendingEPSS 1.1%CVE-2026-0920CRITICALLA-Studio Element Kit for Elementor <= 1.5.6.3 - Unauthenticated Privilege Escalation via Backdoor to Administrative User Creation via lakit_bkrole parameterEPSS 1.1%CVE-2024-8030CRITICALUltimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider <= 2.0.3 - Unauthenticated PHP Object InjectionEPSS 1.1%CVE-2024-3499HIGHElementsKit Elementor addons <= 3.1.0 - Authenticated (Contributor+) Local File Inclusion via Onepage Scroll ModuleEPSS 1.1%CVE-2024-10873HIGHLA-Studio Element Kit for Elementor <= 1.4.2 - Authenticated (Contributor+) Local File InclusionEPSS 1.1%CVE-2025-7697CRITICALIntegration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.1.1 - Unauthenticated PHP Object Injection via verify_field_val FunctionEPSS 1.1%CVE-2025-7696CRITICALIntegration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.2.3 - Unauthenticated PHP Object Injection via verify_field_val FunctionEPSS 1.0%CVE-2024-6459CRITICALNews Element Elementor Blog Magazine < 1.0.6 - Unauthenticated LFIEPSS 1.0%CVE-2024-6297CRITICALSeveral WordPress.org Plugins <= Various Versions - Injected BackdoorEPSS 1.0%CVE-2024-5147CRITICALWPZOOM Addons for Elementor (Templates, Widgets) <= 1.1.37 - Unauthenticated Local File InclusionEPSS 1.0%CVE-2023-0336MEDIUMOoohBoi Steroids for Elementor < 2.1.5 - Subscriber+ Attachment DeletionEPSS 1.0%CVE-2024-5153CRITICALStartklar Elementor Addons <= 1.7.15 - Unauthenticated Path Traversal to Arbitrary Directory DeletionEPSS 1.0%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →