Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Visualmodo — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting Visualmodo. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Visualmodo develops WordPress themes and page builders, enabling users to create custom websites. Historically, their products have been vulnerable to multiple security issues, including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. The company has recorded nine CVEs, with several allowing attackers to execute arbitrary code or bypass security controls. While no major public incidents have been widely documented, the consistent pattern of vulnerabilities in their themes and builders suggests potential risks for unpatched installations. Users are advised to maintain regular updates and follow security best practices when implementing Visualmodo solutions to mitigate potential exploitation risks.

Top products by Visualmodo: Borderless – Addons and Templates for Elementor Borderless Visualmodo Elements
CVE IDTitleCVSSSeverityPublished
CVE-2025-5290 Borderless – Elementor Addons and Templates <= 1.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Borderless – Addons and Templates for ElementorCWE-79 6.4 Medium2025-05-31
CVE-2024-10867 Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.6.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG Upload — Borderless – Addons and Templates for ElementorCWE-79 5.4 Medium2025-01-31
CVE-2024-11600 Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.6.0 - Authenticated (Administrator+) Remote Code Execution — Borderless – Addons and Templates for ElementorCWE-94 7.2 High2025-01-30
CVE-2024-11583 Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.5.9 - Missing Authorization to Icon Font Deletion — Borderless – Addons and Templates for ElementorCWE-862 4.3 Medium2025-01-30
CVE-2024-11095 Visualmodo Elements <= 1.0.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload — Visualmodo ElementsCWE-79 6.4 Medium2024-12-14
CVE-2024-54211 WordPress Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin <= 1.5.8 - Cross Site Scripting (XSS) vulnerability — BorderlessCWE-79 5.9 Medium2024-12-06
CVE-2024-34757 WordPress Borderless plugin <= 1.7.5 - Cross Site Scripting (XSS) vulnerability — BorderlessCWE-79 6.5 Medium2024-05-17
CVE-2024-4666 Borderless - Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — Borderless – Addons and Templates for ElementorCWE-79 6.4 Medium2024-05-14
CVE-2023-38518 WordPress Borderless Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS) — BorderlessCWE-79 5.9 Medium2023-09-03

This page lists every published CVE security advisory associated with Visualmodo. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.