Essential Addons for Elementor – Popular Elementor Templates & Widgets

Vulnerabilities 62Slug essential-addons-for-elementor-liteLatest version 6.6.3WordPress.org →

Minimum safe version

6.6.0

Update to 6.6.0 or later to address 62 fixable vulnerabilities

Latest available6.6.3 ✓

N/A

2026-04-22< 6.6.0

Essential Addons for Elementor – Popular Elementor Templates & Widgets < 6.6.0 - Missing Authorization

N/A

2026-01-15< 6.5.6

Essential Addons for Elementor <= 6.5.5 - Missing Authorization to Unauthenticated Sensitive Information Exposure

N/A

2026-02-13< 6.5.10

Essential Addons for Elementor <= 6.5.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Info Box Widget

Medium 5.3

2026-02-19< 6.5.6

CVE-2026-23543

Medium 6.5

2026-01-06< 6.5.4

Essential Addons for Elementor <= 6.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

Wordfence CVE EUVD

Medium 6.4

2025-12-17< 6.5.4

CVE-2025-13977

Low 2.7

2025-10-31< 6.3.0

CVE-2025-64352

CVE EUVD Wordfence

Medium 6.4

2025-08-15< 6.2.3

Essential Addons for Elementor – Popular Elementor Templates and Widgets <= 6.2.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via 'data-gallery-items'

EUVD Wordfence CVE

Medium 6.4

2025-07-08< 6.1.20

Essential Addons for Elementor – Popular Elementor Templates and Widgets <= 6.1.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via `Calendar` And `Business Reviews` Widgets

EUVD Wordfence CVE

Medium 6.4

2025-07-03< 6.0.5

Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript Library

EUVD Wordfence WPScan CVE

Medium 6.4

2025-06-07< 6.1.13

Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 6.1.12 - Authenticated(Contributor+) Stored Cross-Site Scripting via Event Calendar Widget

EUVD Wordfence CVE

Medium 6.4

2025-06-07< 6.1.13

Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 6.1.12 - Authenticated(Contributor+) Stored Cross-Site Scripting via Pricing Table Widget

EUVD Wordfence CVE

High 7.1

2025-04-17< 6.0.15

CVE-2025-24752

CVE EUVD Wordfence

Medium 6.5

2025-04-16< 6.1.10

CVE-2025-39590

CVE EUVD Wordfence

Medium 4.3

2025-04-16< 6.1.10

CVE-2025-39589

CVE EUVD Wordfence

Medium 6.5

2024-12-31< 6.0.8

CVE-2024-56063

CVE Patchstack Wordfence

Medium 5.7

2024-11-15< 6.0.10

CVE-2024-8978

CVE Patchstack Wordfence

Medium 5.4

2024-11-15< 6.0.8

CVE-2024-8961

CVE Patchstack Wordfence

Medium 5.7

2024-11-15< 6.0.10

CVE-2024-8979

CVE Patchstack Wordfence

Medium 4.3

2024-10-16< 4.6.5

CVE-2021-4446

High 8.8

2024-10-16< 4.6.5

CVE-2021-4447

Medium 5.4

2024-09-13< 6.0.4

CVE-2024-8742

Medium 5.4

2024-09-11< 6.0.4

CVE-2024-8440

CVE Patchstack Wordfence

Medium 5.4

2024-08-13< 6.0.0

CVE-2024-7092

CVE Patchstack Wordfence

Medium 6.5

2024-08-01< 5.9.27

CVE-2024-39649

CVE Patchstack Wordfence

Medium 5.4

2024-06-11< 5.9.24

CVE-2024-5189

CVE Patchstack Wordfence

Medium 5.4

2024-06-06< 5.9.23

CVE-2024-5188

CVE Patchstack Wordfence

Medium 5.4

2024-05-30< 5.9.22

CVE-2024-5073

CVE Wordfence Patchstack

N/A

2024-06-03< 5.9.16

CVE-2024-34764

CVE Patchstack Wordfence

Medium 5.4

2024-05-14< 5.9.21

CVE-2024-4624

CVE Patchstack Wordfence

Medium 5.4

2024-05-10< 5.9.20

CVE-2024-4449

Medium 5.4

2024-05-10< 5.9.20

CVE-2024-4275

CVE Patchstack Wordfence

Medium 6.1

2024-05-10< 5.9.20

CVE-2024-4448

Medium 5.4

2024-05-02< 5.9.18

CVE-2024-4156

CVE Patchstack Wordfence

Medium 5.4

2024-05-02< 5.9.16

CVE-2024-4003

Medium 6.4

2024-05-02< 5.9.16

CVE-2024-3728

Medium 5.3

2024-04-25< 5.9.16

CVE-2024-3733

CVE Patchstack Wordfence

Medium 6.4

2024-04-17< 5.9.15

CVE-2024-3333

CVE Patchstack Wordfence

Medium 5.3

2024-04-09< 5.9.14

CVE-2024-2974

CVE Wordfence Patchstack WPScan

High 8.8

2024-03-30< 5.9.14

CVE-2024-3018

CVE Wordfence Patchstack WPScan

Medium 6.4

2024-04-09< 5.9.12

CVE-2024-2650

CVE Wordfence WPScan

Medium 6.4

2024-04-09< 5.9.12

CVE-2024-2623

CVE Wordfence Patchstack WPScan

High 7.4

2024-03-13< 5.9.10

CVE-2024-1536

CVE Wordfence Patchstack WPScan

Medium 6.4

2024-03-13< 5.9.10

CVE-2024-1537

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-20< 5.9.9

CVE-2024-1172

CVE Wordfence Patchstack WPScan

Medium 6.4

2024-02-20< 5.9.9

CVE-2024-1276

CVE Wordfence Patchstack WPScan

Medium 6.4

2024-02-20< 5.9.9

CVE-2024-1236

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-20< 5.9.9

CVE-2024-1171

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-05< 5.9.8

CVE-2024-0954

CVE Wordfence Patchstack WPScan

Medium 5.4

2024-02-05< 5.9.5

CVE-2024-0585

CVE Patchstack Wordfence WPScan

Medium 5.4

2024-02-05< 5.9.5

CVE-2024-0586

CVE Patchstack Wordfence WPScan

Medium 5.4

2024-01-04< 5.9.3

CVE-2023-7044

CVE Patchstack Wordfence WPScan

High 8.8

2024-05-17< 5.8.9

CVE-2023-41955

CVE Patchstack WPScan

N/A

2023-09-14< 5.8.9

Essential Addons for Elementor <= 5.8.8 - Authenticated (Contributor+) Privilege Escalation

Medium 5.3

2023-07-20< 5.8.2

CVE-2023-3779

CVE Patchstack Wordfence WPScan

Critical 9.8

2023-05-12< 5.7.2

CVE-2023-32243

CVE Wordfence Patchstack WPScan

N/A

2021-05-05< 4.6.5

Essential Addons for Elementor <= 4.6.4 - Authenticated (Contributor+) Privilege Escalation

N/A

2021-05-05< 4.6.5

Essential Addons for Elementor <= 4.6.4 - Missing Authorization

N/A

2021-04-13< 4.5.4

WordPress Essential Addons for Elementor plugin <= 4.5.3 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

Medium 5.4

2021-05-05< 4.5.4

CVE-2021-24255

CVE Wordfence WPScan

Critical 9.8

2022-02-01< 5.0.9

CVE-2022-0320

CVE Patchstack Wordfence WPScan

Medium 6.1

2022-02-24< 5.0.9

CVE-2022-0683

CVE Patchstack Wordfence WPScan