CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added yesterday•7 views

CVE-2026-57619

CVE-2026-57619 affects the WordPress Elementor Website Builder plugin (versions ≤ 4.1.3). The issue is a Sensitive Data Exposure vulnerability caused by the component/flow described in the sources. The CVSS 3.1 base score is 6.5 (MEDIUM) with network attack vector, low attack complexity, and priv...

6.5CVSS5.8AI score

Cvelist•added yesterday•9 views

CVE-2026-57619 WordPress Elementor Website Builder plugin <= 4.1.3 - Sensitive Data Exposure vulnerability

Contributor Sensitive Data Exposure in Elementor Website Builder = 4.1.3 versions...

6.5CVSS

Patchstack•added yesterday•5 views

WordPress Elementor Website Builder plugin <= 4.1.3 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Steven Julian in WordPress Plugin Elementor Website Builder versions = 4.1.3...

6.5CVSS5.8AI score

Exploits0Affected Software1

RedhatCVE•added 2026/06/05 7:42 p.m.•12 views

CVE-2025-14732

The Elementor Website Builder – More Than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widget parameters in all versions up to, and including, 3.35.5 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS5.7AI score0.00341EPSS

RedhatCVE•added 2026/06/05 7:34 p.m.•8 views

CVE-2026-49782

Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from n/a through 4.1.0...

5.4CVSS5.4AI score0.00145EPSS

NVD•added 2026/06/02 2:16 p.m.•9 views

CVE-2026-49782

5.4CVSS0.00145EPSS

EUVD•added 2026/06/02 2:3 p.m.•9 views

EUVD-2026-33933

ATTACKERKB•added 2026/06/02 2:3 p.m.•8 views

CVE-2026-49782

Cvelist•added 2026/06/02 2:3 p.m.•41 views

Exploits0References2

CVE-2026-49782 WordPress Elementor Website Builder plugin <= 4.1.0 - Broken Access Control vulnerability

5.4CVSS0.00145EPSS

CVE•added 2026/06/02 2:3 p.m.•108 views

CVE-2026-49782

CVE-2026-49782 concerns the WordPress Elementor Website Builder plugin (

Patchstack•added 2026/06/02 2:2 p.m.•7 views

WordPress Elementor Website Builder plugin <= 4.1.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Bonds in WordPress Plugin Elementor Website Builder versions = 4.1.0...

Exploits0Affected Software1

Positive Technologies•added 2026/06/02 12:0 a.m.•13 views

PT-2026-45758

CNNVD•added 2026/06/02 12:0 a.m.•5 views

Exploits0References2

WordPress plugin Elementor Website Builder 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. There is a...

5.4CVSS5.4AI score0.00145EPSS

CNNVD•added 2026/05/01 12:0 a.m.•5 views

WordPress plugin Elementor Website Builder 跨站脚本漏洞

6.4CVSS5.6AI score0.00225EPSS

NVD•added 2026/04/08 2:16 a.m.•1 views

CVE-2025-14732

6.4CVSS0.00341EPSS

EUVD•added 2026/04/08 1:24 a.m.•2 views

EUVD-2025-209290

6.4CVSS6.1AI score0.00341EPSS

Cvelist•added 2026/04/08 1:24 a.m.•20 views

CVE-2025-14732 Elementor Website Builder <= 3.35.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via REST API

6.4CVSS0.00341EPSS

CVE•added 2026/04/08 1:24 a.m.•21 views

CVE-2025-14732

The CVE-2025-14732 entry concerns the Elementor Website Builder plugin for WordPress, vulnerable to Stored Cross-Site Scripting in all versions up to 3.35.5 due to insufficient input sanitization and output escaping. The vulnerability affects authenticated users with Contributor-level access and ...

6.4CVSS6.1AI score0.00341EPSS

Vulnrichment•added 2026/04/08 1:24 a.m.•5 views

CVE-2025-14732 Elementor Website Builder <= 3.35.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via REST API

6.4CVSS6.1AI score0.00341EPSS