Known Vulnerabilities for Website Builder by Elementor
Listed below are 10 of the newest known vulnerabilities associated with "Website Builder" by "Elementor".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57619 json | Contributor Sensitive Data Exposure in Elementor Website Builder <= 4.1.3 versions. | Not Provided | 2026-06-25 | 2026-06-25 |
| CVE-2026-49782 json | Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Co... | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2026-12472 json | The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to authorization bypass ... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-12122 json | The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to Sensitive Information... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-8206 json | The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to privilege escalation ... | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2026-8096 json | The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to authorization bypass ... | Not Provided | 2026-05-19 | 2026-05-19 |
| CVE-2026-8073 json | The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to arbitrary file deleti... | Not Provided | 2026-05-19 | 2026-05-19 |
| CVE-2026-7465 json | The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Remote Code Execu... | Not Provided | 2026-05-30 | 2026-06-01 |
| CVE-2026-6740 json | The Nexter Blocks – Gutenberg Blocks, Page Builder & AI Website Builder plugin for WordPress is vulnerable to Stored Cross-... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-6127 json | The Elementor Website Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the _elementor_data meta ... | Not Provided | 2026-05-01 | 2026-05-01 |