Wpdeveloper Security Vulnerabilities (CVEs)
Track 49 security vulnerabilities affecting Wpdeveloper products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This DOM-based XSS vulnerability in Essential Addons for Elementor allows attackers to inject malicious scripts into web pages viewed by users. It aff...
Dec 30, 2025This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into website pages via the...
Jun 7, 2025This vulnerability in Essential Addons for Elementor WordPress plugin exposes sensitive system information to unauthorized users. Attackers can retrie...
Apr 16, 2025This stored XSS vulnerability in the Essential Blocks WordPress plugin allows authenticated attackers with Contributor access or higher to inject mali...
Mar 8, 2025This CVE describes a Missing Authorization vulnerability in WPDeveloper's Essential Blocks for Gutenberg WordPress plugin. It allows attackers to expl...
Feb 25, 2025This stored cross-site scripting (XSS) vulnerability in the WordPress NotificationX plugin allows attackers to inject malicious scripts into web pages...
Feb 3, 2025This CVE describes a missing authorization vulnerability in the WordPress BetterLinks plugin that allows attackers to bypass access controls and perfo...
Jan 2, 2025This stored cross-site scripting (XSS) vulnerability in Essential Addons for Elementor allows attackers to inject malicious scripts into web pages tha...
Dec 31, 2024This CVE describes a Missing Authorization vulnerability in the ReviewX WordPress plugin that allows attackers to bypass access controls and perform u...
Dec 13, 2024This CVE describes a missing authorization vulnerability in the Essential Blocks for Gutenberg WordPress plugin that allows users with lower privilege...
Dec 9, 2024This CVE describes a missing authorization vulnerability in the WordPress BetterDocs plugin that allows attackers to bypass intended access controls. ...
Dec 9, 2024This vulnerability allows attackers to bypass authorization controls in the Essential Blocks for Gutenberg WordPress plugin, potentially accessing res...
Dec 9, 2024This stored XSS vulnerability in the EmbedPress WordPress plugin allows authenticated attackers with Contributor-level access or higher to inject mali...
Nov 28, 2024The Essential Addons for Elementor WordPress plugin exposes sensitive user information through password reset email notifications. Authenticated attac...
Nov 15, 2024This vulnerability in the Essential Addons for Elementor WordPress plugin allows authenticated attackers with Contributor-level access or higher to ex...
Nov 15, 2024This vulnerability allows authenticated WordPress users with Contributor-level access or higher to inject malicious JavaScript into website pages thro...
Nov 15, 2024This SQL injection vulnerability in the WordPress BetterLinks plugin allows attackers to execute arbitrary SQL commands on the database. It affects al...
Nov 4, 2024This vulnerability in the Essential Addons for Elementor WordPress plugin allows attackers with access to the Elementor page builder to create registr...
Oct 16, 2024This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into pages using the Filte...
Sep 13, 2024This stored XSS vulnerability in Essential Addons for Elementor plugin allows authenticated attackers with contributor-level access or higher to injec...
Sep 11, 2024This vulnerability allows attackers to read arbitrary files on WordPress servers running the EmbedPress plugin through path traversal. Attackers can e...
Aug 19, 2024This path traversal vulnerability in the WordPress BetterDocs plugin allows attackers to include local PHP files through improper path validation. It ...
Aug 13, 2024This stored cross-site scripting (XSS) vulnerability in the Essential Addons for Elementor WordPress plugin allows attackers to inject malicious scrip...
Aug 1, 2024This CVE describes a Missing Authorization vulnerability in the WordPress EmbedPress plugin that allows unauthorized users to perform actions they sho...
Jun 21, 2024This vulnerability allows authenticated WordPress users with contributor-level permissions or higher to inject malicious scripts via the PDF Widget UR...
Jun 13, 2024This CVE describes a Missing Authorization vulnerability in the WordPress EmbedPress plugin that allows unauthorized users to perform actions intended...
Jun 9, 2024This vulnerability allows authenticated WordPress users with Contributor-level access or higher to inject malicious scripts into web pages via the Ess...
Jun 6, 2024This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into web pages using the E...
Jun 5, 2024This stored XSS vulnerability in the Essential Blocks WordPress plugin allows authenticated attackers with contributor-level permissions or higher to ...
May 18, 2024This vulnerability allows contributors on WordPress sites using Essential Addons for Elementor to escalate their privileges to administrator level. It...
May 17, 2024This stored XSS vulnerability in the Essential Addons for Elementor WordPress plugin allows authenticated attackers with contributor-level access or h...
May 14, 2024This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into pages using the Inter...
May 14, 2024This CVE describes a broken access control vulnerability in the WordPress ReviewX plugin. It allows unauthorized users to perform actions they shouldn...
May 3, 2024This stored XSS vulnerability in the Essential Addons for Elementor WordPress plugin allows authenticated attackers with contributor-level permissions...
May 2, 2024This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into web pages using the E...
May 2, 2024This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into web pages using the E...
May 2, 2024This vulnerability in the Essential Addons for Elementor WordPress plugin allows authenticated attackers with author-level access or higher to perform...
Mar 30, 2024This vulnerability allows authenticated WordPress users with contributor-level permissions or higher to inject malicious scripts into pages using the ...
Mar 13, 2024This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress sites using the NotificationX plugin. Attackers can ...
Feb 27, 2024This vulnerability in the Essential Blocks WordPress plugin allows unauthenticated attackers to overwrite local variables when rendering templates via...
Jan 15, 2024This CVE describes a CSV injection vulnerability in the ReviewX WordPress plugin for WooCommerce. Attackers can embed malicious formulas in CSV files ...
Nov 7, 2023The Essential Blocks WordPress plugin up to version 4.2.0 contains a PHP object injection vulnerability in the get_posts function. Unauthenticated att...
Oct 20, 2023This vulnerability allows unauthenticated attackers to inject malicious scripts into web pages via the WPDeveloper Essential Addons for Elementor Pro ...
Aug 29, 2023The ReviewX WordPress plugin up to version 1.6.13 contains a privilege escalation vulnerability that allows authenticated users with minimal permissio...
Jun 6, 2023This vulnerability allows unauthenticated attackers to reset passwords for any user account, including administrators, in WordPress sites using the Es...
May 12, 2023This vulnerability allows unauthenticated attackers to perform blind SQL injection attacks on WordPress sites running NotificationX plugin versions be...
Mar 7, 2022This vulnerability in the Essential Addons for Elementor WordPress plugin allows unauthenticated attackers to perform Local File Inclusion attacks, re...
Feb 1, 2022This vulnerability allows unauthenticated attackers to export all redirect rules from WordPress sites using the Simple 301 Redirects by BetterLinks pl...
Jun 14, 2021This vulnerability in the Simple 301 Redirects by BetterLinks WordPress plugin allows authenticated users to install arbitrary plugins on vulnerable s...
Jun 14, 2021Why Monitor Wpdeveloper Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 49+ known vulnerabilities affecting Wpdeveloper products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Wpdeveloper packages in under 60 seconds. No agents required - completely agentless scanning that works across Wpdeveloper deployments.
Free vulnerability database: Access detailed information about every Wpdeveloper CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Wpdeveloper CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
