WP Table Builder – Drag & Drop Table Builder

Vulnerabilities 16Slug wp-table-builderLatest version 2.1.13WordPress.org →

Minimum safe version

2.0.20

Update to 2.0.20 or later to address 16 fixable vulnerabilities

Latest available2.1.13 ✓

Medium 4.3

2026-01-09< 2.0.20

CVE-2025-13753

CVE Wordfence

Medium 6.4

2025-08-15< 2.0.13

WP Table Builder – WordPress Table Plugin <= 2.0.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

EUVD Wordfence CVE

Medium 6.5

2025-08-14< 2.0.13

CVE-2025-55711

CVE Wordfence EUVD

N/A

2025-06-06< 2.0.7

CVE-2025-49286

CVE Wordfence

Medium 6.1

2025-04-11< 2.0.6

CVE-2025-32598

CVE EUVD Patchstack Wordfence

Medium 6.3

2024-10-16< 1.3.16

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE

Medium 4.8

2024-08-23< 1.5.1

CVE-2024-3282

CVE Patchstack Wordfence

Medium 6.5

2024-08-12< 1.5.0

CVE-2024-43125

CVE Patchstack Wordfence

Medium 5.4

2024-05-21< 1.4.15

CVE-2024-4700

CVE Patchstack Wordfence

N/A

< 1.3.10

WP Table Builder < 1.3.10 - Reflected Cross-Site Scripting

WPScan

N/A

2023-07-18< 1.4.10

WordPress WP Table Builder – WordPress Table Plugin Plugin < 1.4.10 is vulnerable to Cross Site Scripting (XSS)

Patchstack WPScan CVE

Medium 5.9

2023-05-03< 1.4.7

CVE-2022-46852

CVE Patchstack Wordfence WPScan

N/A

2021-09-27< 1.3.10

WP Table Builder – WordPress Table Plugin <= 1.3.9 - Reflected Cross-Site Scripting

Wordfence

N/A

2022-03-04< 1.3.16

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence

N/A

2022-02-28< 1.3.16

WordPress WP Table Builder – WordPress Table Plugin plugin < 1.3.16 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack

N/A

2022-02-28< 1.3.16

WordPress WP Table Builder – WordPress Table Plugin plugin < 1.3.16 - Sensitive Information Disclosure vulnerability

Patchstack