Essential addons for elementor – popular elementor templates & widgets

This hub aggregates every CVE we track for Essential addons for elementor – popular elementor templates & widgets, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Essential addons for elementor – popular elementor templates & widgets.

• CVE-2026-7665Essential Addons for Elementor <= 6.6.4 - Missing Authorization to Unauthenticated Information Exposure via 'load_more' AJAX Handler5.3Jun 6, 2026
• CVE-2026-5193Essential Addons for Elementor – Popular Elementor Templates & Widgets <= 6.5.13 - Authenticated (Author+) Limited Privilege Escalation via register_user6.5May 14, 2026
• CVE-2026-1512Essential Addons for Elementor <= 6.5.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Info Box Widget6.4Feb 14, 2026
• CVE-2026-1004Essential Addons for Elementor <= 6.5.5 - Missing Authorization to Unauthenticated Sensitive Information Exposure5.3Jan 16, 2026
• CVE-2025-13977Essential Addons for Elementor – Popular Elementor Templates & Widgets <= 6.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting6.4Dec 17, 2025
• CVE-2025-8451Essential Addons for Elementor – Popular Elementor Templates and Widgets <= 6.2.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via 'data-gallery-items'6.4Aug 15, 2025
• CVE-2025-6244Essential Addons for Elementor – Popular Elementor Templates and Widgets <= 6.1.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via `Calendar` And `Business Reviews` Widgets6.4Jul 8, 2025
• CVE-2024-5647Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript Library6.4Jul 3, 2025
• CVE-2024-9993Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 6.1.12 - Authenticated(Contributor+) Stored Cross-Site Scripting via Event Calendar Widget6.4Jun 7, 2025
• CVE-2024-9994Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 6.1.12 - Authenticated(Contributor+) Stored Cross-Site Scripting via Pricing Table Widget6.4Jun 7, 2025
• CVE-2024-8978Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders <= 6.0.9 - Authenticated (Contributor+) Sensitive Information Exposure5.7Nov 15, 2024
• CVE-2024-8979Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders <= 6.0.9 - Authenticated (Author+) Sensitive Information Exposure to Privilege Escalation8.0Nov 15, 2024
• CVE-2024-8961Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders <= 6.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting6.4Nov 15, 2024
• CVE-2021-4447Essential Addons for Elementor <= 4.6.4 - Authenticated (Contributor+) Privilege Escalation8.8Oct 16, 2024
• CVE-2021-4446Essential Addons for Elementor <= 4.6.4 - Missing Authorization6.3Oct 16, 2024