VYPR

Website Builder

by Elementor

Source repositories

CVEs (25)

  • CVE-2024-8236Nov 26, 2024
    risk 0.00cvss epss 0.00

    The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter of the Icon widget in all versions up to, and including, 3.25.7 due to insufficient input sanitization and output…

  • CVE-2024-6757Oct 15, 2024
    risk 0.00cvss epss 0.00

    The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Basic Information Exposure in all versions up to, and including, 3.23.5 via the get_image_alt function. This makes it possible for authenticated attackers, with…

  • CVE-2024-5416Sep 11, 2024
    risk 0.00cvss epss 0.00

    The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the url parameter of multiple widgets in all versions up to, and including, 3.23.4 due to insufficient input sanitization and output escaping on…

  • CVE-2023-33922Jun 11, 2024
    risk 0.00cvss epss 0.00

    Missing Authorization vulnerability in Elementor Elementor Website Builder.This issue affects Elementor Website Builder: from n/a through 3.13.2.

  • CVE-2024-24934May 17, 2024
    risk 0.00cvss epss 0.01

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Elementor Elementor Website Builder allows Manipulating Web Input to File System Calls.This issue affects Elementor Website Builder: from n/a through 3.19.0.

Page 2 of 2