Medium severity5.4NVD Advisory· Published Jun 5, 2020· Updated Jun 17, 2026
CVE-2020-13865
CVE-2020-13865
Description
The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from multiple stored XSS vulnerabilities. An author user can create posts that result in stored XSS vulnerabilities, by using a crafted link in the custom URL or by applying custom attributes.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Elementor Page Builder plugindescription
- Range: <2.9.9
Patches
Vulnerability mechanics
References
1- www.softwaresecured.com/elementor-page-builder-stored-xss/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.