Unlimited-elements Unlimited Elements For Elementor — known CVE vulnerabilities
Every CVE whose affected-product data names Unlimited-elements Unlimited Elements For Elementor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (22)
CVE-2023-31231 — CVSS 9.9 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons…
CVE-2023-31090 — CVSS 9.9 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons…
CVE-2023-33930 — CVSS 9.1 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons…
CVE-2024-49271 — CVSS 9.1 (critical): Deserialization of Untrusted Data vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates)…
CVE-2024-3055 — CVSS 8.8 (high): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to time-based SQL Injection via…
CVE-2024-5329 — CVSS 8.8 (high): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to blind SQL Injection via the…
CVE-2024-4779 — CVSS 8.8 (high): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to SQL Injection via the…
CVE-2023-6743 — CVSS 8.8 (high): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Remote Code Execution in all…
CVE-2023-3295 — CVSS 8.8 (high): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) for WordPress is vulnerable to arbitrary file uploads due to missing…
CVE-2023-31080 — CVSS 8.3 (high): Missing Authorization vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates).This issue…
CVE-2024-2662 — CVSS 7.2 (high): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to command injection in all…
CVE-2024-45454 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Unlimited Elements Unlimited Elements…
CVE-2024-29792 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Unlimited Elements Unlimited Elements…
CVE-2025-1663 — CVSS 6.4 (medium): The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions…
CVE-2024-0367 — CVSS 6.4 (medium): The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the link field of an installed…
CVE-2024-10784 — CVSS 6.4 (medium): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting…
CVE-2024-13153 — CVSS 6.4 (medium): The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions…
CVE-2024-13155 — CVSS 6.4 (medium): The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Transparent Split…
CVE-2024-3547 — CVSS 6.1 (medium): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting…
CVE-2022-47170 — CVSS 5.9 (medium): Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets…
CVE-2024-3190 — CVSS 5.4 (medium): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting…
CVE-2024-35674 — CVSS 4.3 (medium): Missing Authorization vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates)…