CVE Catalog

CVE-2026-57619

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Summary

The Elementor Website Builder plugin version 4.1.3 and earlier contains a contributor sensitive data exposure vulnerability. This flaw may allow an attacker to access confidential information stored by the plugin.

Risk Assessment

The risk involves potential leakage of personal or configuration data of contributors, which may compromise the privacy and security of the organization.

Recommendation

It is recommended to immediately update the Elementor Website Builder plugin to a version newer than 4.1.3, which includes a fix for this vulnerability.

Original NVD description (English source)

Contributor Sensitive Data Exposure in Elementor Website Builder <= 4.1.3 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS