Website Builder Security Vulnerabilities and Issues — Website Builder CVE List

Lucene search

ElementorWebsite Builder

3 matches found

CVE•added 2024/03/26 9:15 p.m.•2334 views

CVE-2023-48777

Unrestricted Upload of File with Dangerous Type vulnerability in Elementor.Com Elementor Website Builder.This issue affects Elementor Website Builder: from 3.3.0 through 3.18.1.

9.9CVSS9.5AI score0.88881EPSS

CVE•added 2024/03/27 7:15 a.m.•46 views

CVE-2024-2781

The Elementor Website Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the video_html_tag attribute in all versions up to, and including, 3.20.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with cont...

6.4CVSS7.7AI score0.00124EPSS

CVE•added 2024/03/27 7:15 a.m.•43 views

CVE-2024-2120

The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Post Navigation widget in all versions up to, and including, 3.20.1 due to insufficient input sanitization and output escaping on user supplied attributes...

5.4CVSS7.6AI score0.00133EPSS