Known Vulnerabilities for products from Elementor
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Elementor".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40763 json | Not Provided | 2026-04-15 | 2026-04-16 | |
| CVE-2026-40745 json | Not Provided | 2026-04-15 | 2026-04-15 | |
| CVE-2026-39703 json | Not Provided | 2026-04-08 | 2026-04-13 | |
| CVE-2026-39702 json | Not Provided | 2026-04-08 | 2026-04-08 | |
| CVE-2026-39636 json | Not Provided | 2026-04-08 | 2026-04-13 | |
| CVE-2026-39500 json | Not Provided | 2026-04-08 | 2026-04-13 | |
| CVE-2026-32532 json | Not Provided | 2026-03-25 | 2026-03-25 | |
| CVE-2026-32527 json | Not Provided | 2026-03-25 | 2026-03-26 | |
| CVE-2026-32462 json | Not Provided | 2026-03-13 | 2026-04-01 | |
| CVE-2026-32445 json | Not Provided | 2026-03-13 | 2026-04-01 | |
| CVE-2025-1319 json | The Site Mailer – SMTP Replacement, Email API Deliverability & Email Log plugin for WordPress is vulnerable to Stored Cross... | Not Provided | 2025-02-28 | 2026-04-08 |
| CVE-2024-54444 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elementor Elementor Web... | Not Provided | 2025-02-25 | 2026-04-01 |
| CVE-2024-37437 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elementor Elementor Web... | Not Provided | 2024-07-09 | 2026-04-01 |
| CVE-2024-4619 json | The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to DOM-Based Stored Cross-... | Not Provided | 2024-05-21 | 2026-04-08 |
| CVE-2024-4107 json | The Elementor Website Builder – More than Just a Page Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site S... | Not Provided | 2024-05-14 | 2026-04-08 |
| CVE-2024-2781 json | The Elementor Website Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the video_html_tag at... | Not Provided | 2024-03-27 | 2026-04-08 |
| CVE-2024-2121 json | The Elementor Website Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Ca... | Not Provided | 2024-03-27 | 2026-04-08 |
| CVE-2024-2120 json | The Elementor Website Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Post Nav... | Not Provided | 2024-03-27 | 2026-04-08 |
| CVE-2024-2117 json | The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scrip... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2024-1521 json | The Elementor Website Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an SVGZ file uploaded... | Not Provided | 2024-03-27 | 2026-04-08 |
Known software with vulnerabilities from Elementor
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Elementor | Elementor | - |
| Application | Elementor | Elementor Page Builder | - |
| Application | Elementor | Elementor Pro | 3.0.5 |
| Application | Elementor | Page Builder | 2.9.0 |
| Application | Elementor | Website Builder | - |