Elementor Elementor_page_builder

8 CVEs affecting Elementor Elementor_page_builder. Latest disclosed: 2025-06-10. Critical: 2, High: 1.

Top CVEs affecting Elementor Elementor_page_builder
CVESeverityScorePublishedSummary
CVE-2020-13126Critical9.92020-05-17An issue was discovered in the Elementor Pro plugin before 2.9.4 for WordPress, as exploited in the wild in May 2020 in conjunction with CVE-2020-13125. An att…
CVE-2020-7055Critical9.92020-04-22An issue was discovered in Elementor 2.7.4. Arbitrary file upload is possible in the Elementor Import Templates function, allowing an attacker to execute code…
CVE-2017-18596High8.82019-09-10The elementor plugin before 1.8.0 for WordPress has incorrect access control for internal functions.
CVE-2025-3076Medium6.42025-06-10The Elementor Website Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘button_text’ parameter in all versions up to, and…
CVE-2018-18379Medium6.12019-10-07The elementor-edit-template class in wp-admin/customize.php in the Elementor Pro plugin before 2.0.10 for WordPress has XSS.
CVE-2020-20406Medium5.42020-09-16A stored XSS vulnerability exists in the Custom Link Attributes control Affect function in Elementor Page Builder 2.9.2 and earlier versions. It is caused by i…
CVE-2020-13865Medium5.42020-06-05The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from multiple stored XSS vulnerabilities. An author user can create posts that result in s…
CVE-2020-13864Medium5.42020-06-05The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from a stored XSS vulnerability. An author user can create posts that result in a stored X…