Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Unlimited Elements — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting Unlimited Elements. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Unlimited Elements is a WordPress page builder plugin that enables users to create custom layouts through drag-and-drop functionality. Historically, the plugin has been vulnerable to multiple security issues, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. These flaws often stem from insufficient input validation and improper access controls. The plugin has accumulated 9 CVEs to date, with some allowing unauthenticated attackers to execute arbitrary code or compromise administrative accounts. While no major public incidents have been widely documented, the consistent discovery of critical vulnerabilities highlights ongoing security challenges in its architecture and maintenance.

Top products by Unlimited Elements: Unlimited Elements For Elementor (Free Widgets, Addons, Templates)
CVE IDTitleCVSSSeverityPublished
CVE-2024-49271 WordPress Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin <= 1.5.121 - Remote Code Execution (RCE) vulnerability — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-82 9.1 Critical2024-10-16
CVE-2024-45454 WordPress Unlimited Elements for Elementor plugin <= 1.5.121 - Reflected Cross Site Scripting (XSS) vulnerability — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-79 7.1 High2024-10-06
CVE-2023-31080 WordPress Unlimited Elements For Elementor plugin <= 1.5.65 - Multiple Broken Access Control vulnerability — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-862 8.3 High2024-06-09
CVE-2024-35674 WordPress Unlimited Elements For Elementor plugin <= 1.5.109 - Broken Access Control vulnerability — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-862 4.3 Medium2024-06-05
CVE-2023-33930 WordPress Unlimited Elements For Elementor plugin <= 1.5.66 - Unrestricted Zip Extraction vulnerability — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-434 9.1 Critical2024-06-04
CVE-2023-31090 WordPress Unlimited Elements For Elementor plugin <= 1.5.60 - Unrestricted Zip Extraction vulnerability — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-434 9.9 Critical2024-04-24
CVE-2024-29792 WordPress Unlimited Elements for Elementor plugin <= 1.5.93 - Reflected Cross Site Scripting (XSS) vulnerability — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-79 7.1 High2024-03-27
CVE-2023-31231 WordPress Unlimited Elements For Elementor (Free Widgets, Addons, Templates) Plugin <= 1.5.65 is vulnerable to Arbitrary File Upload — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-434 9.9 Critical2023-12-20
CVE-2022-47170 WordPress Unlimited Elements For Elementor (Free Widgets, Addons, Templates) Plugin <= 1.5.48 is vulnerable to Cross Site Scripting (XSS) — Unlimited Elements For Elementor (Free Widgets, Addons, Templates)CWE-79 5.9 Medium2023-03-28

This page lists every published CVE security advisory associated with Unlimited Elements. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.