Medium 6.5 Unfixed
2026-04-08≤ 1.3.14
CVE-2026-39708
UiCore Elements – Free widgets and templates for Elementor
Minimum safe version
1.3.5
Update to 1.3.5 or later to address 3 fixable vulnerabilities
Latest available1.3.14 ✓⚠ 1 vulnerability has no fix
Medium 6.5
2025-08-27< 1.3.5
CVE-2025-58196
High 7.5
2025-08-12< 1.3.1
UiCore Elements <= 1.3.0 - Missing Authorization to Unauthenticated Arbitrary File Read
Medium 6.4
2025-04-23< 1.2.0
WordPress UiCore Elements Plugin <= 1.0.16 is vulnerable to Cross Site Scripting (XSS)