Elementor Website Builder Vulnerabilities
The Elementor Website Builder WordPress plugin has 2 known security vulnerabilities. The most recent was disclosed on May 12, 2023. Check whether your site runs an affected version below.
View Elementor Website Builder on WordPress.orgSummary
Latest vulnerability disclosed on May 12, 2023.
Recommendation
WPSentry recommends keeping it updated
Elementor Website Builder's known issues are medium severity and are generally fixed in newer releases. Keep this plugin fully up to date and scan your site regularly.
Is your site affected?
Run a free external scan to detect Elementor Website Builder and 35+ other WordPress security checks — no login or plugin required.
Known Elementor Website Builder vulnerabilities
- medium
Elementor <= 3.13.1 - Missing Authorization to Settings Update
Affected versions: <=3.13.1Disclosed May 12, 2023 - medium
Elementor Website Builder <= 2.7.5 - Stored Cross-Site Scripting
Affected versions: <=2.7.5Disclosed January 29, 2020
How to stay protected
Update promptly
Keep Elementor Website Builder on its latest release — most vulnerabilities are fixed in newer versions.
Scan regularly
Run an external scan after every update to catch outdated or vulnerable software early.
Monitor continuously
Enable monitoring to get alerted the moment a new issue affects your stack.