Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Element Invader — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting Element Invader. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Element Invader is a web application framework primarily used for building interactive dashboards and data visualization tools. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 10 recorded CVEs. The framework's complex JavaScript architecture and extensive plugin ecosystem have created attack surfaces for unauthenticated RCE through insecure deserialization and XSS via improper input sanitization. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in its core components suggests ongoing challenges in secure coding practices, particularly regarding access controls and third-party integrations.

Top products by Element Invader: ElementInvader Addons for Elementor Element Invader – Template Kits for Elementor
CVE IDTitleCVSSSeverityPublished
CVE-2026-25007 WordPress ElementInvader Addons for Elementor plugin <= 1.4.2 - SQL Injection vulnerability — ElementInvader Addons for ElementorCWE-89 8.5 High2026-03-25
CVE-2026-25028 WordPress ElementInvader Addons for Elementor plugin <= 1.4.1 - Broken Access Control vulnerability — ElementInvader Addons for ElementorCWE-862 5.4 Medium2026-02-03
CVE-2026-24386 WordPress Element Invader – Template Kits for Elementor plugin <= 1.2.4 - Broken Access Control vulnerability — Element Invader – Template Kits for ElementorCWE-862 4.3 Medium2026-01-22
CVE-2025-58205 WordPress ElementInvader Addons for Elementor Plugin <= 1.3.6 - Cross Site Scripting (XSS) Vulnerability — ElementInvader Addons for ElementorCWE-79 6.5 Medium2025-08-27
CVE-2025-48288 WordPress ElementInvader Addons for Elementor plugin <= 1.3.5 - Cross Site Scripting (XSS) Vulnerability — ElementInvader Addons for ElementorCWE-79 6.5 Medium2025-05-19
CVE-2025-24729 WordPress ElementInvader Addons for Elementor plugin <= 1.3.3 - Cross Site Scripting (XSS) vulnerability — ElementInvader Addons for ElementorCWE-79 6.5 Medium2025-01-24
CVE-2025-24618 WordPress ElementInvader Addons for Elementor Plugin <= 1.3.1 - Broken Access Control vulnerability — ElementInvader Addons for ElementorCWE-862 4.3 Medium2025-01-24
CVE-2025-24578 WordPress ElementInvader Addons for Elementor plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability — ElementInvader Addons for ElementorCWE-79 6.5 Medium2025-01-24
CVE-2025-22786 WordPress ElementInvader Addons for Elementor plugin <= 1.2.6 - Local File Inclusion vulnerability — ElementInvader Addons for ElementorCWE-35 7.5 High2025-01-15
CVE-2024-47630 WordPress ElementInvader Addons for Elementor plugin <= 1.2.7 - Cross Site Scripting (XSS) vulnerability — ElementInvader Addons for ElementorCWE-79 6.5 Medium2024-10-05

This page lists every published CVE security advisory associated with Element Invader. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.