| CVE-2024-12328 | MAS Elementor <= 1.1.7 - Authenticated (Author+) Stored Cross-Site Scripting via SVG | madrasthemes | MAS Elementor | Medium | 6.4 | 2025-01-08 08:18:16 | Deep Dive |
| CVE-2024-12584 | 140+ Widgets | Xpro Addons For Elementor – FREE <= 1.4.6.2 - Authenticated (Contributor+) Post Disclosure via Post Duplication | xpro | Xpro Addons — 140+ Widgets for Elementor | Medium | 4.3 | 2025-01-08 06:41:39 | Deep Dive |
| CVE-2024-12852 | Happy Addons for Elementor <= 3.15.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | thehappymonster | Happy Addons for Elementor | Medium | 6.4 | 2025-01-08 06:41:38 | Deep Dive |
| CVE-2024-12851 | Element Pack Lite - Addons for Elementor <= 5.10.14 - Authenticated (Contributor+) Stored Cross-Site Scripting | bdthemes | Element Pack – Widgets, Templates & Addons for Elementor | Medium | 6.4 | 2025-01-08 06:41:38 | Deep Dive |
| CVE-2024-12205 | Themesflat Addons For Elementor <= 2.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | themesflat | Themesflat Addons For Elementor | Medium | 6.4 | 2025-01-08 04:17:58 | Deep Dive |
| CVE-2025-22500 | WordPress Alpha Price Table For Elementor plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability | Ali Ali | Alpha Price Table For Elementor | Medium | 6.5 | 2025-01-07 16:50:11 | Deep Dive |
| CVE-2024-12532 | BWD Elementor Addons <= 4.3.18 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates | bestwpdeveloper | BWD Elementor Addons | Medium | 4.3 | 2025-01-07 11:11:12 | Deep Dive |
| CVE-2024-56282 | WordPress WPMozo Addons Lite for Elementor plugin <= 1.1.0 - Local File Inclusion vulnerability | Elicus | WPMozo Addons Lite for Elementor | High | 7.5 | 2025-01-07 10:49:21 | Deep Dive |
| CVE-2024-56285 | WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.5.1 - Cross-Site Scripting vulnerability | wpbits | WPBITS Addons For Elementor Page Builder | Medium | 6.5 | 2025-01-07 10:49:19 | Deep Dive |
| CVE-2025-22312 | WordPress Thim Elementor Kit plugin <= 1.2.9 - Cross Site Scripting (XSS) vulnerability | ThimPress | Thim Elementor Kit | Medium | 6.5 | 2025-01-07 10:48:55 | Deep Dive |
| CVE-2025-22316 | WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.5.1 - Cross Site Scripting (XSS) vulnerability | wpbits | WPBITS Addons For Elementor Page Builder | Medium | 5.9 | 2025-01-07 10:48:53 | Deep Dive |
| CVE-2025-22321 | WordPress ElementsCSS Addons for Elementor plugin <= 1.0.8.9 - Cross Site Scripting (XSS) vulnerability | TheInnovs | ElementsCSS Addons for Elementor | Medium | 6.5 | 2025-01-07 10:48:52 | Deep Dive |
| CVE-2025-22323 | WordPress Image Hover Effects for Elementor plugin <= 1.0.2.4 - Cross Site Scripting (XSS) vulnerability | Liton Arefin | Image Hover Effects for Elementor | Medium | 6.5 | 2025-01-07 10:48:51 | Deep Dive |
| CVE-2025-22333 | WordPress Piotnet Addons For Elementor plugin <= 2.4.31 - Cross-Site Scripting vulnerability | piotnetdotcom | Piotnet Addons For Elementor | Medium | 6.5 | 2025-01-07 10:48:46 | Deep Dive |
| CVE-2024-9502 | Master Addons -- Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor <= 2.0.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Tooltip Module | litonice13 | Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits | Medium | 6.4 | 2025-01-07 06:40:57 | Deep Dive |
| CVE-2024-12624 | Sina Extension for Elementor <= 3.5.91 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Sina Image Differ | shaonsina | Sina Extension for Elementor | Medium | 6.4 | 2025-01-07 06:40:57 | Deep Dive |
| CVE-2024-10536 | FancyPost – Best Ultimate Post Block, Post Grid, Layouts, Carousel, Slider For Gutenberg & Elementor <= 6.0.0 - Missing Authorization to Authenticated (Subscriber+) Shortcode Export | wpqode | FancyPost – Post Blocks, Grids & Sliders for Block Editor and Elementor | Medium | 4.3 | 2025-01-07 05:24:09 | Deep Dive |
| CVE-2024-12140 | Elementor AI Addons – 70 Widgets, Premium Templates, Ultimate Elements <= 2.2.1 - Authenticated (Contributor+) Private Templates Content Disclosure | aiwp | Elementor Addons AI Addons – 70 Widgets, Premium Templates, Ultimate Elements | Medium | 4.3 | 2025-01-07 04:22:18 | Deep Dive |
| CVE-2024-12457 | Chat Support for Viber – Chat Bubble and Chat Button for Gutenberg, Elementor and Shortcode <= 1.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | faysal61 | Chat Support for Viber – Chat Bubble and Chat Button for Gutenberg, Elementor and Shortcode | Medium | 6.4 | 2025-01-07 04:22:15 | Deep Dive |
| CVE-2024-56268 | WordPress Post Grid Elementor Addon plugin <= 2.0.18 - Cross Site Scripting (XSS) vulnerability | hookandhook | Post Grid Elementor Addon | Medium | 6.5 | 2025-01-02 12:22:09 | Deep Dive |