Does Better Addons for Elementor have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Better Addons for Elementor compatible with WordPress 6.8.5?

According to WordPress.org data, Better Addons for Elementor 1.5.7 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Better Addons for Elementor compatible with PHP 7.4+?

Better Addons for Elementor requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Better Addons for Elementor updated?

Better Addons for Elementor was last updated on Jan 19, 2026. Frequent updates are generally a positive security signal.

What is Better Addons for Elementor's security score?

Better Addons for Elementor has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Better Addons for Elementor Security & Risk Analysis

wordpress.org/plugins/better-elementor-addons

Showcase useful elements with card style for elementor page builder.

5K active installs v1.5.7 PHP 7.4+ WP 4.6+ Updated Jan 19, 2026

addonselementorelementor-addonelementor-addonselementor-widget

A · Safe

CVEs total6

Unpatched0

Last CVEDec 11, 2025

Plugin page Download

Safety Verdict

Is Better Addons for Elementor Safe to Use in 2026?

Generally Safe

Score 92/100

Better Addons for Elementor has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

6 known CVEsLast CVE: Dec 11, 2025Updated 3mo ago

Risk Assessment

The static analysis for better-elementor-addons v1.5.7 shows a generally good security posture, with a low attack surface consisting of only one AJAX handler, none of which are unprotected. The code demonstrates strong practices with 100% of SQL queries using prepared statements and 98% of output being properly escaped. The presence of nonce and capability checks further strengthens its defenses. There are no identified critical or high severity issues from the taint analysis, indicating no immediate risks of unsanitized paths. However, the plugin's vulnerability history is a significant concern. With six known CVEs, including a past high-severity cross-site scripting vulnerability and missing authorization issues, it suggests a recurring pattern of security weaknesses. Although there are currently no unpatched vulnerabilities, the history of past issues, especially those involving authorization and input sanitization, warrants caution. The plugin has demonstrated strengths in its code practices, but its past performance indicates a need for vigilance and ongoing security scrutiny.

Key Concerns

Vulnerability history indicates past authorization issues
Vulnerability history indicates past XSS vulnerabilities
Vulnerability history indicates past PHP Remote File Inclusion
Vulnerability history indicates multiple past medium severity issues
Low percentage of output escaping (98%)

Vulnerabilities

6 published

Better Addons for Elementor Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

4 CVEs in 2024

2024

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

High

Medium

6 total CVEs

CVE-2025-12830medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Better Elementor Addons <= 1.5.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Slider Widget

Dec 11, 2025 Patched in 1.5.6 (26d)

CVE-2024-34432medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Better Elementor Addons <= 1.4.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

May 7, 2024 Patched in 1.4.5 (9d)

CVE-2024-33541high · 8.8Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Better Elementor Addons <= 1.4.1 - Authenticated(Contributor+) Local File Inclusion

Apr 25, 2024 Patched in 1.4.2 (7d)

CVE-2024-30423medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Better Elementor Addons <= 1.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Mar 28, 2024 Patched in 1.3.8 (7d)

CVE-2024-2280medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Better Elementor Addons <= 1.4.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via widget links

Mar 28, 2024 Patched in 1.4.2 (9d)

CVE-2023-41656medium · 4.3Missing Authorization

Better Elementor Addons <= 1.3.8 - Missing Authorization

Sep 1, 2023 Patched in 1.3.9 (210d)

Version History

Better Addons for Elementor Release Timeline

v1.5.7Current

v1.5.6

v1.5.51 CVE

CVE-2025-12830

Code Analysis

Analyzed Mar 16, 2026

Better Addons for Elementor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1715 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped1752 total outputs

Attack Surface

Better Addons for Elementor Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_bea_admin_ajaxadmin\admin-ajax.php:23

WordPress Hooks 14

actionadmin_enqueue_scriptsadmin\admin-ajax.php:25

actionadmin_menuadmin\admin-init.php:26

actionadmin_initadmin\admin-init.php:27

actionadmin_enqueue_scriptsadmin\admin-init.php:30

filterallowed_redirect_hostsadmin\admin-init.php:75

actioninitbetter-addons.php:81

actionplugins_loadedbetter-addons.php:83

actionadmin_noticesbetter-addons.php:117

actionelementor/elements/categories_registeredbetter-addons.php:207

actionelementor/editor/after_enqueue_scriptsinc\elementor-addon.php:48

actionelementor/frontend/after_register_scriptsplugin.php:549

actionelementor/frontend/after_enqueue_stylesplugin.php:551

actionelementor/widgets/widgets_registeredplugin.php:553

actionelementor/editor/after_enqueue_stylesplugin.php:555

Maintenance & Trust

Better Addons for Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJan 19, 2026

PHP min version7.4

Downloads122K

Community Trust

Rating56/100

Number of ratings4

Active installs5K

Alternatives

Better Addons for Elementor Alternatives

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

elementskit-lite

Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget

2.0M 24 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 59 CVEs

Ultimate Addons for Elementor

header-footer-elementor

Powerful Elementor addon with advanced Elementor widgets, templates, WooCommerce widgets & Header-Footer builder to build professional websites fa …

2.0M 12 CVEs

Premium Addons for Elementor – Powerful Elementor Templates & Widgets

premium-addons-for-elementor

Elementor Carousel, Mega Menu, Posts List/Slider, Media Gallery, WooCommerce Widgets, Display Conditions, Premade Templates & more.

700K 36 CVEs

Royal Addons for Elementor – Addons and Templates Kit for Elementor

royal-elementor-addons

Elementor templates, Header footer builder, Elementor Post Grid, Woocommerce Grid builder, Slider, Forms, Gallery, Nav menu addons, Elementor widgets.

600K 76 CVEs

Developer Profile

Better Addons for Elementor Developer Profile

wpdive

8 plugins · 7K total installs

trust score

Avg Security Score

84/100

Avg Patch Time

40 days

View full developer profile

Detection Fingerprints

How We Detect Better Addons for Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/better-elementor-addons/assets/css/Bea_Custom_Icon.css/wp-content/plugins/better-elementor-addons/assets/css/frontend.css/wp-content/plugins/better-elementor-addons/assets/js/frontend.js/wp-content/plugins/better-elementor-addons/assets/js/Bea_Custom_Icon.js

Script Paths

/wp-content/plugins/better-elementor-addons/assets/js/frontend.js/wp-content/plugins/better-elementor-addons/assets/js/Bea_Custom_Icon.js

Version Parameters

better-elementor-addons/assets/css/Bea_Custom_Icon.css?ver=better-elementor-addons/assets/css/frontend.css?ver=better-elementor-addons/assets/js/frontend.js?ver=better-elementor-addons/assets/js/Bea_Custom_Icon.js?ver=

HTML / DOM Fingerprints

CSS Classes

better-elementor-addons

Data Attributes

data-widget_typedata-element_type

JS Globals

better_addons_frontend_config

FAQ