Lucene search
+L

969 matches found

patchstack
patchstack
added 2026/07/09 7:33 p.m.5 views

WordPress GW AI Website Builder plugin <= 1.0.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Plugin Settings Deletion vulnerability discovered by Legion Hunter in WordPress Plugin GW AI Website Builder versions = 1.0.1...

4.3CVSS6.1AI score0.00222EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2026/07/08 1:16 p.m.7 views

CVE-2026-6740

The Nexter Blocks – Gutenberg Blocks, Page Builder & AI Website Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'commentIcon' parameter in all versions up to, and including, 4.7.4 due to insufficient input sanitization and output escaping. This makes it possible...

6.4CVSS0.00156EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 12:17 p.m.13 views

CVE-2025-14785

The Website Builder by SeedProd - Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's seedprodnestedmenuwidget shortcode in all versions up to, and including, 6.20.2 due to insufficient input...

6.4CVSS0.00156EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/07/08 12:0 a.m.7 views

PT-2026-56393

Name of the Vulnerable Software and Affected Versions Website Builder by SeedProd - Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode versions prior to 6.20.3 Description Stored Cross-Site Scripting occurs due to insufficient input sanitization and output escaping on user...

6.4CVSS6.2AI score0.00156EPSS
Exploits0References7
cve
cve
added 2026/06/25 1:12 p.m.16 views

CVE-2026-57619

CVE-2026-57619 affects the WordPress Elementor Website Builder plugin (versions ≤ 4.1.3). The issue is a Sensitive Data Exposure vulnerability caused by the component/flow described in the sources. The CVSS 3.1 base score is 6.5 (MEDIUM) with network attack vector, low attack complexity, and priv...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/25 1:12 p.m.8 views

CVE-2026-57619

Contributor Sensitive Data Exposure in Elementor Website Builder = 4.1.3 versions...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References2
euvd
euvd
added 2026/06/25 1:12 p.m.6 views

EUVD-2026-39361

Contributor Sensitive Data Exposure in Elementor Website Builder = 4.1.3 versions...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/25 1:12 p.m.43 views

CVE-2026-57619 WordPress Elementor Website Builder plugin <= 4.1.3 - Sensitive Data Exposure vulnerability

Contributor Sensitive Data Exposure in Elementor Website Builder = 4.1.3 versions...

6.5CVSS0.0027EPSS
Exploits0References1
patchstack
patchstack
added 2026/06/25 8:40 a.m.7 views

WordPress Elementor Website Builder plugin <= 4.1.3 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Steven Julian in WordPress Plugin Elementor Website Builder versions = 4.1.3...

6.5CVSS5.8AI score0.0027EPSS
Exploits0Affected Software1
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.13 views

PT-2026-52439

Contributor Sensitive Data Exposure in Elementor Website Builder = 4.1.3 versions...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/05 7:42 p.m.19 views

CVE-2025-14732

The Elementor Website Builder – More Than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widget parameters in all versions up to, and including, 3.35.5 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS5.7AI score0.00341EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:34 p.m.10 views

CVE-2026-49782

Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from n/a through 4.1.0...

5.4CVSS5.4AI score0.00145EPSS
Exploits0References1
nvd
nvd
added 2026/06/02 2:16 p.m.11 views

CVE-2026-49782

Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from n/a through 4.1.0...

5.4CVSS0.00145EPSS
Exploits0References1
euvd
euvd
added 2026/06/02 2:3 p.m.12 views

EUVD-2026-33933

Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from n/a through 4.1.0...

5.4CVSS5.8AI score0.00145EPSS
Exploits0References1
cve
cve
added 2026/06/02 2:3 p.m.223 views

CVE-2026-49782

CVE-2026-49782 concerns the WordPress Elementor Website Builder plugin (

5.4CVSS5.8AI score0.00145EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/02 2:3 p.m.56 views

CVE-2026-49782 WordPress Elementor Website Builder plugin <= 4.1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from n/a through 4.1.0...

5.4CVSS0.00145EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/02 2:3 p.m.10 views

CVE-2026-49782

Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from n/a through 4.1.0...

5.4CVSS5.8AI score0.00145EPSS
Exploits0References2
patchstack
patchstack
added 2026/06/02 2:2 p.m.11 views

WordPress Elementor Website Builder plugin <= 4.1.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Bonds in WordPress Plugin Elementor Website Builder versions = 4.1.0...

5.4CVSS5.8AI score0.00145EPSS
Exploits0Affected Software1
ptsecurity
ptsecurity
added 2026/06/02 12:0 a.m.16 views

PT-2026-45758

Name of the Vulnerable Software and Affected Versions Elementor Website Builder versions prior to 4.1.0 Description A missing authorization issue allows for the exploitation of incorrectly configured access control security levels. Recommendations Update to a version later than 4.1.0...

5.4CVSS5.8AI score0.00145EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/06/02 12:0 a.m.7 views

WordPress plugin Elementor Website Builder 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. There is a...

5.4CVSS5.4AI score0.00145EPSS
Exploits0References1
Rows per page
Query Builder