CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/05 7:34 p.m.•5 views

CVE-2026-49782

Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from n/a through 4.1.0...

5.4CVSS5.4AI score0.00028EPSS

NVD•added 2026/06/02 2:16 p.m.•8 views

CVE-2026-49782

5.4CVSS0.00028EPSS

Cvelist•added 2026/06/02 2:3 p.m.•36 views

CVE-2026-49782 WordPress Elementor Website Builder plugin <= 4.1.0 - Broken Access Control vulnerability

5.4CVSS0.00028EPSS

ATTACKERKB•added 2026/06/02 2:3 p.m.•6 views

CVE-2026-49782

EUVD•added 2026/06/02 2:3 p.m.•7 views

Exploits0References2

EUVD-2026-33933

CVE•added 2026/06/02 2:3 p.m.•47 views

CVE-2026-49782

CVE-2026-49782 concerns the WordPress Elementor Website Builder plugin (

Patchstack•added 2026/06/02 2:2 p.m.•5 views

WordPress Elementor Website Builder plugin <= 4.1.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Bonds in WordPress Plugin Elementor Website Builder versions = 4.1.0...

Exploits0Affected Software1

Positive Technologies•added 2026/06/02 12:0 a.m.•11 views

PT-2026-45758

CNNVD•added 2026/05/01 12:0 a.m.•4 views

Exploits0References2

WordPress plugin Elementor Website Builder 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.4CVSS5.6AI score0.00055EPSS

NVD•added 2026/04/08 2:16 a.m.•1 views

CVE-2025-14732

6.4CVSS0.00012EPSS

EUVD•added 2026/04/08 1:24 a.m.•2 views

EUVD-2025-209290

6.4CVSS6.1AI score0.00012EPSS

Cvelist•added 2026/04/08 1:24 a.m.•18 views

CVE-2025-14732 Elementor Website Builder <= 3.35.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via REST API

6.4CVSS0.00012EPSS

CVE•added 2026/04/08 1:24 a.m.•16 views

CVE-2025-14732

The CVE-2025-14732 entry concerns the Elementor Website Builder plugin for WordPress, vulnerable to Stored Cross-Site Scripting in all versions up to 3.35.5 due to insufficient input sanitization and output escaping. The vulnerability affects authenticated users with Contributor-level access and ...

6.4CVSS6.1AI score0.00012EPSS

Vulnrichment•added 2026/04/08 1:24 a.m.•4 views

CVE-2025-14732 Elementor Website Builder <= 3.35.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via REST API

6.4CVSS6.1AI score0.00012EPSS

CNNVD•added 2026/04/08 12:0 a.m.•5 views

WordPress plugin Elementor Website Builder – More Than Just a Page Builder 安全漏洞

6.4CVSS5.6AI score0.00012EPSS

RedhatCVE•added 2026/03/26 3:17 p.m.•3 views

CVE-2026-32352

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Elementor Elementor Website Builder elementor allows DOM-Based XSS.This issue affects Elementor Website Builder: from n/a through = 3.35.5...

6.5CVSS5.8AI score0.00045EPSS

RedhatCVE•added 2026/03/26 3:17 p.m.•1 views

CVE-2026-32445

Missing Authorization vulnerability in Elementor Elementor Website Builder elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elementor Website Builder: from n/a through = 3.35.5...

2.7CVSS5.8AI score0.00036EPSS

EUVD•added 2026/03/13 9:31 p.m.•1 views

EUVD-2026-11989

2.7CVSS5.8AI score0.00036EPSS

Exploits0References2

NVD•added 2026/03/13 7:54 p.m.•1 views

CVE-2026-32352

6.5CVSS0.00045EPSS