Website Builder Security Vulnerabilities and Issues — Website Builder CVE List

Lucene search

ElementorWebsite Builder

3 matches found

CVE•added 2025/02/20 5:15 a.m.•91 views

CVE-2024-13445

The Elementor Website Builder – More Than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the border, margin and gap parameters in all versions up to, and including, 3.27.4 due to insufficient input sanitization and output escaping. This makes it possible f...

6.4CVSS5.7AI score0.00024EPSS

CVE•added 2025/01/30 2:15 p.m.•62 views

CVE-2024-8494

The Elementor Website Builder Pro plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.25.10 via the 'elementor-template' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensit...

6.5CVSS4.6AI score0.00061EPSS

CVE•added 2025/02/25 3:15 p.m.•58 views

CVE-2024-54444

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elementor Elementor Website Builder allows Stored XSS. This issue affects Elementor Website Builder: from n/a through 3.25.10.

6.5CVSS6.8AI score0.00026EPSS