Unrated severityNVD Advisory· Published Jun 13, 2022· Updated Apr 28, 2026
WordPress Elementor plugin <= 3.5.5 - Unauthenticated DOM-based Reflected Cross-Site Scripting (XSS) vulnerability
CVE-2022-29455
Description
DOM-based Reflected Cross-Site Scripting (XSS) vulnerability in Elementor's Elementor Website Builder plugin <= 3.5.5 versions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Elementor/Elementor Website Builder (WordPress plugin)v5Range: <= 3.5.5
Patches
Vulnerability mechanics
References
3- patchstack.com/database/vulnerability/elementor/wordpress-elementor-plugin-3-5-5-unauthenticated-dom-based-reflected-cross-site-scripting-xss-vulnerabilitymitrex_refsource_CONFIRM
- rotem-bar.com/hacking-65-million-websites-greater-cve-2022-29455-elementormitrex_refsource_CONFIRM
- wordpress.org/plugins/elementor/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.