Vulnerabilities > Elementor > Website Builder

DATE CVE VULNERABILITY TITLE RISK
2020-01-28 CVE-2020-8426 Cross-site Scripting vulnerability in Elementor Website Builder
The Elementor plugin before 2.8.5 for WordPress suffers from a reflected XSS vulnerability on the elementor-system-info page.
network
low complexity
elementor CWE-79
5.4
5.4
2020-01-22 CVE-2020-7109 Unspecified vulnerability in Elementor Website Builder
The Elementor Page Builder plugin before 2.8.4 for WordPress does not sanitize data during creation of a new template.
network
low complexity
elementor
critical
 9.8
9.8