| CVE-2024-47361 | WordPress Elementor Addon Elements plugin <= 1.13.6 - Broken Access Control vulnerability | WPVibes | Elementor Addon Elements | Medium | 6.5 | 2024-11-01 14:17:03 | Deep Dive |
| CVE-2024-9388 | Black Widgets For Elementor <= 1.3.7 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | modernaweb | Black Widgets For Elementor | Medium | 6.4 | 2024-10-30 11:01:03 | Deep Dive |
| CVE-2024-49654 | WordPress Extra Privacy for Elementor plugin <= 0.1.3 - Reflected Cross Site Scripting (XSS) vulnerability | Marian Heddesheimer | Extra Privacy for Elementor | High | 7.1 | 2024-10-29 11:58:24 | Deep Dive |
| CVE-2024-49665 | WordPress Web Bricks Addons for Elementor plugin <= 1.1.1 - Stored Cross Site Scripting (XSS) vulnerability | Web Bricks | Web Bricks Addons for Elementor | Medium | 6.5 | 2024-10-29 11:20:19 | Deep Dive |
| CVE-2024-49667 | WordPress Local Business Addons For Elementor plugin <= 1.1.5 - Stored Cross Site Scripting (XSS) vulnerability | Asaduzzaman Abir | Local Business Addons For Elementor | Medium | 6.5 | 2024-10-29 11:11:44 | Deep Dive |
| CVE-2024-10360 | Move Addons for Elementor <= 1.3.5 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates | moveaddons | Move Addons for Elementor | Medium | 4.3 | 2024-10-29 11:01:36 | Deep Dive |
| CVE-2024-10266 | Premium Addons for Elementor <= 4.10.60 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Video Box Widget | leap13 | Premium Addons for Elementor – Powerful Elementor Templates & Widgets | Medium | 6.4 | 2024-10-29 11:01:35 | Deep Dive |
| CVE-2024-49679 | WordPress WPKoi Templates for Elementor plugin <= 3.1.0 - Cross Site Scripting (XSS) vulnerability | wpkoithemes | WPKoi Templates for Elementor | Medium | 5.9 | 2024-10-29 10:58:55 | Deep Dive |
| CVE-2024-9376 | Kata Plus – Addons for Elementor – Widgets, Extensions and Templates <= 1.4.7 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | climaxthemes | Kata Plus – Addons for Elementor – Widgets, Extensions and Templates | Medium | 6.4 | 2024-10-29 09:31:29 | Deep Dive |
| CVE-2024-10312 | Exclusive Addons for Elementor <= 2.7.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates | timstrifler | Exclusive Addons for Elementor | Medium | 4.3 | 2024-10-29 07:30:55 | Deep Dive |
| CVE-2024-50453 | WordPress The Pack Elementor addons plugin <= 2.0.9 - Local File Inclusion vulnerability | webangon | The Pack Elementor addons | High | 7.5 | 2024-10-28 19:52:11 | Deep Dive |
| CVE-2024-50433 | WordPress Sky Addons for Elementor plugin <= 2.5.15 - Cross Site Scripting (XSS) vulnerability | wowDevs | Sky Addons for Elementor | Medium | 6.5 | 2024-10-28 18:14:17 | Deep Dive |
| CVE-2024-50447 | WordPress Envo's Elementor Templates & Widgets for WooCommerce plugin <= 1.4.19 - Cross Site Scripting (XSS) vulnerability | EnvoThemes | Envo's Elementor Templates & Widgets for WooCommerce | Medium | 6.5 | 2024-10-28 17:57:27 | Deep Dive |
| CVE-2024-50449 | WordPress PDF Generator Addon for Elementor Page Builder plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability | RedefiningTheWeb | PDF Generator Addon for Elementor Page Builder | Medium | 6.5 | 2024-10-28 17:54:50 | Deep Dive |
| CVE-2024-50442 | WordPress Royal Elementor Addons and Templates plugin <= 1.3.980 - XML External Entity (XXE) vulnerability | WP Royal | Royal Elementor Addons | Medium | 6.5 | 2024-10-28 11:14:55 | Deep Dive |
| CVE-2024-10357 | Clever Addons for Elementor <= 2.2.1 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates | zootemplate | Clever Addons for Elementor | Medium | 4.3 | 2024-10-26 09:35:22 | Deep Dive |
| CVE-2024-10091 | ElementsKit Elementor addons <= 3.2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison Widget | roxnor | ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor | Medium | 6.4 | 2024-10-26 02:31:31 | Deep Dive |
| CVE-2024-49702 | WordPress myCred Elementor plugin <= 1.2.6 - Cross Site Scripting (XSS) vulnerability | Saad Iqbal | myCred Elementor | Medium | 6.5 | 2024-10-24 12:28:26 | Deep Dive |
| CVE-2024-10050 | Elementor Header & Footer Builder <= 1.6.43 - Authenticated (Contributor+) Information Disclosure via Shortcode | brainstormforce | Ultimate Addons for Elementor | Medium | 4.3 | 2024-10-24 08:32:22 | Deep Dive |
| CVE-2024-49676 | WordPress Custom Icons for Elementor plugin <= 0.3.3 - Arbitrary File Upload vulnerability | Michael Bourne | Custom Icons for Elementor | Medium | 6.6 | 2024-10-23 15:31:36 | Deep Dive |