浏览 52+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-27983 | WordPress LMS Elementor Pro plugin <= 1.0.4 - Privilege Escalation vulnerability | designthemes | LMS Elementor Pro | 中危 | - | 2026-03-05 05:54:03 | Deep Dive |
| CVE-2026-0831 | Templately <= 3.4.8 - Unauthenticated Limited Arbitrary JSON File Write | wpdevteam | Templately – Elementor & Gutenberg Template Library: 6500+ Free & Pro Ready Templates And Cloud! | Medium | 5.3 | 2026-01-10 09:22:18 | Deep Dive |
| CVE-2025-46434 | WordPress The Plus Addons for Elementor Pro plugin < 6.3.7 - Broken Access Control vulnerability | POSIMYTH Innovation | The Plus Addons for Elementor Pro | 中危 | - | 2026-01-07 12:35:32 | Deep Dive |
| CVE-2025-31046 | WordPress AnyWhere Elementor Pro plugin <= 2.29 - Broken Access Control Vulnerability | WPvibes | AnyWhere Elementor Pro | Medium | 4.3 | 2026-01-05 10:24:56 | Deep Dive |
| CVE-2024-24844 | WordPress PowerPack Pro for Elementor plugin <= 2.10.6 - Unauthenticated Plugin Settings Reset vulnerability | IdeaBox Creations | PowerPack Pro for Elementor | High | 7.5 | 2025-12-23 12:06:05 | Deep Dive |
| CVE-2025-11997 | Document Pro Elementor – Documentation & Knowledge Base <= 1.0.9 - Unauthenticated Information Exposure | ngothoai | Document Pro Elementor – Documentation & Knowledge Base | Medium | 5.3 | 2025-11-11 03:30:40 | Deep Dive |
| CVE-2025-46259 | WordPress The Plus Addons for Elementor - Pro Plugin < 6.3.7 - Broken Access Control vulnerability | POSIMYTH Innovation | The Plus Addons for Elementor Pro | Medium | 5.4 | 2025-07-01 19:10:23 | Deep Dive |
| CVE-2025-3076 | Elementor Pro <= 3.29.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | https://elementor.com/ | Elementor Website Builder Pro | Medium | 6.4 | 2025-06-10 04:23:10 | Deep Dive |
| CVE-2024-13808 | Xpro Elementor Addons - Pro <= 1.4.9 - Authenticated (Contributor+) Remote Code Execution | WPXpro | Xpro Elementor Addons - Pro | High | 8.8 | 2025-04-26 04:22:37 | Deep Dive |
| CVE-2025-1639 | Animation Addons for Elementor Pro <= 1.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation | crowdyTheme | Animation Addons for Elementor Pro | High | 8.8 | 2025-03-04 03:38:00 | Deep Dive |
| CVE-2024-8494 | Elementor Website Builder Pro – More than Just a Page Builder <= 3.25.10 - Authenticated (Contributor+) Sensitive Information Exposure via Shortcode | https://elementor.com/ | Elementor Website Builder Pro | Medium | 4.3 | 2025-01-30 13:42:05 | Deep Dive |
| CVE-2024-51812 | WordPress Pro Addons For Elementor plugin <= 1.5.0 - Cross Site Scripting (XSS) vulnerability | Wasim | Pro Addons For Elementor | Medium | 6.5 | 2024-11-19 16:31:52 | Deep Dive |
| CVE-2024-39634 | WordPress PowerPack Pro for Elementor plugin <= 2.10.14 - Contributor+ Privilege Escalation vulnerability | IdeaBox | PowerPack Pro for Elementor | High | 8.8 | 2024-08-01 20:32:49 | Deep Dive |
| CVE-2024-2455 | Element Pack - Addon for Elementor Page Builder WordPress Plugin <= 7.9.0 - Authenticated(Contributor+) Stored Cross-Site Scripting via Wrapper Link URL | BDThemes | Element Pack Pro - Addon for Elementor Page Builder WordPress Plugin | Medium | 6.4 | 2024-08-01 12:43:27 | Deep Dive |
| CVE-2024-35656 | WordPress Elementor Pro <= 3.21.2 - Reflected Cross Site Scripting (XSS) vulnerability | Elementor | Elementor Pro | High | 7.1 | 2024-07-22 10:02:01 | Deep Dive |
| CVE-2023-35050 | WordPress Elementor Pro plugin <= 3.13.0 - Auth. Broken Access Control vulnerability | Elementor | Elementor Pro | Medium | 6.5 | 2024-06-19 12:28:02 | Deep Dive |
| CVE-2024-3668 | PowerPack Pro for Elementor <= 2.10.17 - Authenticated (Contributor+) Privilege Escalation | PowerPack | PowerPack Pro for Elementor | High | 8.8 | 2024-06-08 04:32:37 | Deep Dive |
| CVE-2024-5612 | Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.8.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Lightbox and Modal Widget | Essential Addons | Essential Addons for Elementor Pro | Medium | 6.4 | 2024-06-07 04:33:24 | Deep Dive |
| CVE-2024-5086 | Essential Addons for Elementor PRO – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.8.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via Team Member Carousel Widget | Essential Addons | Essential Addons for Elementor Pro | Medium | 6.4 | 2024-05-29 07:33:53 | Deep Dive |
| CVE-2023-47178 | WordPress The Plus Addons for Elementor Pro plugin <= 5.2.8 - Unauthenticated Local File Inclusion vulnerability | POSIMYTH Innovation | The Plus Addons for Elementor Pro | High | 8.6 | 2024-05-17 08:35:08 | Deep Dive |