This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
The popular Elementor plugin for WordPress has a security issue that allows hackers to read any file on a website. This can happen because the plugin does not have enough protection for the file name...
Read More. The Elementor Website Builder is a tool used for creating web pages on the WordPress platform. Unfortunately, it has a security vulnerability that allows attackers to insert harmful code into pages,...
Read MoreThe Elementor Website Builder is a popular tool for creating web pages on WordPress. However, it has been found to have a security vulnerability called Stored Cross-Site Scripting. This means that ha...
Read MoreThe Elementor Website Builder plugin for WordPress has a security issue in versions up to and including 3.29.0. This means that attackers with a certain level of access can insert harmful code into p...
Read MoreThe Elementor Website Builder plugin for WordPress has a security issue called Stored Cross-Site Scripting. This is because it doesn't properly clean up the input and output of information. This allo...
Read MoreThe Elementor Website Builder, which is a plugin for WordPress, has a security vulnerability that allows attackers to inject harmful code into pages. This can happen when using certain parameters, su...
Read MoreThe Elementor Website Builder is a plugin for WordPress that helps create websites. Unfortunately, it has a security vulnerability that allows attackers to insert harmful code into the website. This ...
Read MoreThe Elementor Website Builder is a plugin for WordPress that helps create web pages. However, it has a security issue called Stored Cross-Site Scripting. This means that attackers with certain access...
Read MoreThe Elementor Website Builder, a plugin for WordPress, has a vulnerability that allows for basic information to be exposed. This affects all versions up to 3.23.5 and can be exploited through the get...
Read MoreThe Elementor Website Builder is a plugin used on WordPress to help build websites. However, it has a security vulnerability that allows attackers with certain access levels to inject harmful scripts...
Read MoreThe Elementor Website Builder is a popular tool for creating websites on WordPress. However, it has a security issue where anyone with a certain level of access can download any SVG file from the sit...
Read MoreThe Elementor Website Builder is a plugin for WordPress that helps create and design web pages. However, it has a vulnerability called DOM-Based Stored Cross-Site Scripting that affects versions up t...
Read MoreThe Elementor Website Builder is an add-on for WordPress that helps you create web pages. However, version 3.20.2 and earlier have a security issue where an attacker with certain permissions can inse...
Read MoreThe Elementor Website Builder is a plugin for WordPress that helps you create web pages. Unfortunately, in versions up to 3.19.0, there is a problem that could allow bad actors to delete files and in...
Read MoreThe Elementor Website Builder is a popular tool for creating websites on WordPress. However, it has a vulnerability that allows attackers to inject harmful web scripts into pages. This can happen if ...
Read MoreThe Elementor Website Builder, a plugin for WordPress that is used to build websites, has a security vulnerability in all versions up to and including 3.18.0. This vulnerability allows attackers who ...
Read MoreThe Elementor Website Builder plugin for WordPress is not secure in versions up to 3.16.4. This means that people with contributor-level access or higher can access data that they are not supposed to...
Read MoreThe Elementor Website Builder plugin for WordPress has a security vulnerability in versions up to 3.16.4. If the plugin is installed, an attacker with contributor-level access or higher can inject ma...
Read MoreThe Elementor plugin for WordPress is vulnerable to a security risk called Reflected Cross-Site Scripting. This vulnerability exists in versions up to, and including, 3.5.4. It is caused by the plugi...
Read MoreThe Elementor plugin for WordPress is vulnerable to security threats. In versions up to and including 3.13.3, the template "save_item" function does not validate input properly, which could lead to th...
Read MoreThe Elementor Website Builder plugin for WordPress has a security flaw that affects versions 3.5.5 and earlier. This flaw lets attackers inject malicious code into webpages
Read MoreThe Elementor Website Builder plugin for WordPress has a security issue that could let attackers gain control of a website. This affects versions up to 2.7.5. Without the proper security measures in p...
Read MoreThe Elementor Page Builder plugin for WordPress had an issue before version 2.8.4 where it did not properly clean up data when creating a new template. This could have potentially allowed malicious co...
Read MoreThe Elementor Website Builder plugin for WordPress had a security issue before version 2.9.9 that allowed an author user to create posts that could cause malicious code to be stored on the website. Th...
Read MoreThe Elementor Website Builder WordPress plugin before version 3.1.4 had a vulnerability that allowed users with Contributor or higher permissions to insert malicious code into a page. This code would ...
Read MoreThe Elementor Website Builder plugin for WordPress is not secure in versions up to 1.7.12. This means that anyone who is logged in can access AJAX actions that should only be available to certain user...
Read MoreThe Elementor plugin for WordPress
Read MoreA security issue was found in the Elementor plugin version 2.9.13 for WordPress. An attacker who is logged in to the system can create a malicious template that can cause a security breach when it is ...
Read MoreThe Elementor Website Builder plugin for WordPress is not secure in versions 3.6.0 to 3.6.2. Attackers can use it to do things like modify data on the website
Read MoreThe Elementor plugin for WordPress is vulnerable to unauthorized changes to its data. This is because the plugin does not have checks in place to prevent it. This means that people with limited acces...
Read MoreIn the Elementor Website Builder WordPress plugin before version 3.1.4
Read MoreThe Elementor plugin for WordPress is a security risk for users of versions up to and including 3.12.1. Someone with administrator-level permissions could use the plugin's 'replace_urls' functionality...
Read MoreThere is a security issue in Elementor Page Builder
Read MoreIn the Elementor Website Builder WordPress plugin before version 3.1.4
Read MoreThe Elementor Website Builder WordPress plugin before version 3.1.4 had a security issue. Users with Contributor or higher permissions could send a modified request when saving a page which contained ...
Read MoreThe Elementor Website Builder plugin
Read MoreThe Elementor Website Builder plugin for WordPress has a security vulnerability. If you have version 2.9.7 or earlier, attackers with certain capabilities can add malicious code to pages. Whenever a ...
Read MoreThe Elementor Website Builder plugin for WordPress is not secure in versions up to 3.0.13. This means that people with access to posting content on the website can upload SVG files that could contain ...
Read MoreIn the Elementor Website Builder WordPress plugin before version 3.1.4
Read MoreElementor 2.9.5 is a WordPress plugin that can be used by people who have signed up for a WordPress account. This plugin has a feature called ""safe mode"" that can be turned on by the user. If the sa...
Read MoreThe Elementor Website Builder plugin for WordPress
Read MoreThe Elementor Website Builder WordPress plugin before version 3.1.4 was vulnerable to a security risk. People with Contributor or higher permissions were able to add JavaScript code to a ‘title_html...
Read MoreThe Elementor Website Builder for WordPress, up to and including version 2.7.5, is vulnerable to Stored Cross-Site Scripting. This means that attackers can use the elementor_js_log AJAX action to ins...
Read More