Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

Elementor Website Builder — Vulnerabilities & Security Advisories 19

All 19 CVE vulnerabilities found in Elementor Website Builder, with AI-generated Chinese analysis, references, and POCs.

Vendor: Unknown

CVE IDTitleCVSSSeverityPaused
CVE-2026-32445 WordPress Elementor Website Builder plugin <= 3.35.5 - Broken Access Control vulnerability CWE-862 8.2 -2026-03-13
CVE-2026-32352 WordPress Elementor Website Builder plugin <= 3.35.5 - Cross Site Scripting (XSS) vulnerability CWE-79 6.1 -2026-03-13
CVE-2024-50555 WordPress Elementor Website Builder plugin <= 3.29.0 - Cross Site Scripting (XSS) vulnerability CWE-79 5.4AIMediumAI2026-02-20
CVE-2025-67588 WordPress Elementor Website Builder plugin <= 3.33.0 - Broken Access Control vulnerability CWE-862 4.3 Medium2025-12-09
CVE-2024-54444 WordPress Elementor plugin <= 3.25.10 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2025-02-25
CVE-2024-37437 WordPress Elementor Website Builder plugin <= 3.22.1 - Arbitrary SVG File Download vulnerability CWE-79 5.5 Medium2024-07-09
CVE-2023-33922 WordPress Elementor plugin <= 3.13.2 - Broken Access Control vulnerability CWE-862 4.3 Medium2024-06-11
CVE-2024-24934 WordPress Elementor plugin <= 3.19.0 - Arbitrary File Deletion and Phar Deserialization vulnerability CWE-22 8.5 High2024-05-17
CVE-2023-47504 WordPress Elementor plugin <= 3.16.4 - Auth. Arbitrary Attachment Read vulnerability CWE-287 7.5 High2024-04-24
CVE-2023-48777 WordPress Elementor plugin 3.3.0-3.18.1 - Arbitrary File Upload vulnerability CWE-434 9.9 Critical2024-03-26
CVE-2022-4953 Elementor < 3.5.5 - Iframe Injection 6.1 -2023-08-14
CVE-2023-0329 Elementor Website Builder < 3.12.2 - Admin+ SQLi 7.2 -2023-05-30
CVE-2021-24891 Elementor < 3.4.8 - DOM Cross-Site-Scripting CWE-79 6.1 -2021-11-23
CVE-2021-24201 Elementor < 3.1.2 - Authenticated Stored Cross-Site Scripting (XSS) in Column Element CWE-79 5.4 -2021-04-05
CVE-2021-24206 Elementor < 3.1.2 - Authenticated Stored Cross-Site Scripting (XSS) in Image Box Widget CWE-79 5.4 -2021-04-05
CVE-2021-24205 Elementor < 3.1.2 - Authenticated Stored Cross-Site Scripting (XSS) in Icon Box Widget CWE-79 5.4 -2021-04-05
CVE-2021-24204 Elementor < 3.1.2 - Authenticated Stored Cross-Site Scripting (XSS) in Accordion Widget CWE-79 5.4 -2021-04-05
CVE-2021-24203 Elementor < 3.1.2 - Authenticated Stored Cross-Site Scripting (XSS) in Divider Widget CWE-79 5.4 -2021-04-05
CVE-2021-24202 Elementor < 3.1.2 - Authenticated Stored Cross-Site Scripting (XSS) in Heading Widget CWE-79 5.4 -2021-04-05

All 19 known CVE vulnerabilities affecting Elementor Website Builder with full Chinese analysis, references, and POCs where available.