WPBITS Addons For Elementor Page Builder

Vulnerabilities 15Slug wpbits-addons-for-elementorLatest version 1.8.1WordPress.org →

Minimum safe version

1.8.1

Update to 1.8.1 or later to address 13 fixable vulnerabilities

Latest available1.8.1 ✓Affected up to1.7 ⚠⚠ 1 vulnerability has no fix

Medium 6.1

2026-05-01≤ 1.7

CVE-2024-13362

CVE Wordfence

N/A

2026-01-27< 1.8.1

WPBITS Addons For Elementor <= 1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting

Wordfence CVE

Medium 6.5 Unfixed

2026-04-08≤ 1.8.1

CVE-2026-39703

CVE EUVD Wordfence

Medium 6.5

2025-01-07< 1.6

CVE-2024-56285

CVE Wordfence

Medium 5.9

2025-01-07< 1.6

CVE-2025-22316

CVE Wordfence

Medium 5.4

2024-12-04< 1.6

CVE-2024-8962

CVE Wordfence Patchstack

Medium 6.3

2024-10-16< 1.3.2

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE

Medium 6.5

2025-08-14< 1.5.1

CVE-2024-37945

CVE EUVD Patchstack Wordfence

Medium 5.4

2024-07-09< 1.5.1

CVE-2024-4862

CVE Patchstack Wordfence

Medium 5.4

2024-04-18< 1.4

CVE-2024-32593

CVE Patchstack Wordfence

Medium 5.4

2024-03-20< 1.5

CVE-2024-2129

CVE Wordfence WPScan

N/A

2023-07-18< 1.3

WordPress WPBITS Addons For Elementor Page Builder Plugin < 1.3 is vulnerable to Cross Site Scripting (XSS)

Patchstack CVE

N/A

2022-03-04< 1.3.2

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence

N/A

2022-02-28< 1.3.2

WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.3.1 - Sensitive Information Disclosure vulnerability

Patchstack

N/A

2022-02-28< 1.3.2

WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.3.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack