WP-Safety

Borderless – Addons and Templates for Elementor Security & Risk Analysis

wordpress.org/plugins/borderless

Extend your favorite page builder and site design with the best free Elements, Widgets, Templates, and Toolkit for Block Editor, Elementor & WPBakery!

5K active installs v1.7.5 PHP 8.0+ WP 5.0+ Updated Nov 27, 2025
elementorelementor-addonelementor-widgetelementstemplates
94
A · Safe
CVEs total8
Unpatched0
Last CVEMay 30, 2025
Plugin page Download
Safety Verdict

Is Borderless – Addons and Templates for Elementor Safe to Use in 2026?

Generally Safe

Score 94/100

Borderless – Addons and Templates for Elementor has a strong security track record. Known vulnerabilities have been patched promptly.

8 known CVEsLast CVE: May 30, 2025Updated 4mo ago
Risk Assessment

The "borderless" plugin v1.7.5 exhibits a concerning security posture despite some positive aspects. While it utilizes prepared statements for SQL queries and has a high percentage of properly escaped outputs, the significant number of AJAX handlers without authentication checks presents a substantial attack surface. The presence of dangerous functions like `unserialize` and unsanitized paths in taint analysis further elevates the risk, particularly as these could be leveraged in conjunction with the unprotected entry points. The plugin's history of 8 known CVEs, with a notable number of medium severity vulnerabilities including XSS, Code Injection, and Missing Authorization, indicates a recurring pattern of security weaknesses that have historically required patching. The recent vulnerability in 2025 suggests ongoing issues, even though there are currently no unpatched CVEs. The combination of a large unprotected attack surface, potentially dangerous code patterns, and a history of exploitable vulnerabilities points to a plugin that requires careful monitoring and potentially a riskier approach to deployment.

Key Concerns

  • 6 AJAX handlers without auth checks
  • 2 dangerous functions (unserialize)
  • 3 flows with unsanitized paths
  • 8 total known CVEs
  • 1 high severity CVE in history
  • 7 medium severity CVEs in history
  • Missing nonce checks on 3 AJAX handlers
Vulnerabilities
8

Borderless – Addons and Templates for Elementor Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
3 CVEs in 2024
2024
4 CVEs in 2025
2025
Patched Has unpatched

Severity Breakdown

High
1
Medium
7

8 total CVEs

CVE-2025-5290medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Borderless – Elementor Addons and Templates <= 1.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

May 30, 2025 Patched in 1.7.2 (1d)
CVE-2024-10867medium · 5.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.6.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG Upload

Jan 30, 2025 Patched in 1.6.3 (50d)
CVE-2024-11600high · 7.2Improper Control of Generation of Code ('Code Injection')

Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.6.0 - Authenticated (Administrator+) Remote Code Execution

Jan 30, 2025 Patched in 1.6.1 (51d)
CVE-2024-11583medium · 4.3Missing Authorization

Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.5.9 - Missing Authorization to Icon Font Deletion

Jan 30, 2025 Patched in 1.6.0 (51d)
CVE-2024-54211medium · 5.5Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Borderless <= 1.5.8 - Authenticated (Editor+) Stored Cross-Site Scripting

Dec 2, 2024 Patched in 1.5.9 (19d)
CVE-2024-4666medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Borderless - Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

May 14, 2024 Patched in 1.5.4 (1d)
CVE-2024-34757medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

May 14, 2024 Patched in 1.5.4 (7d)
CVE-2023-38518medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg <= 1.4.8 - Authenticated (Administrator+) Stored Cross-Site Scripting

Jul 20, 2023 Patched in 1.4.9 (187d)
Code Analysis
Analyzed Mar 16, 2026

Borderless – Addons and Templates for Elementor Code Analysis

Dangerous Functions
2
Raw SQL Queries
0
0 prepared
Unescaped Output
62
747 escaped
Nonce Checks
3
Capability Checks
7
File Operations
17
External Requests
5
Bundled Libraries
0

Dangerous Functions Found

unserialize$data = unserialize( $raw );includes\library\inc\CustomizerImporter.php:54
unserialize$response = unserialize( $this->send_query( $args ) ); // phpcs:ignoreincludes\templates\license\license-client.php:1336

Output Escaping

92% escaped809 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

6 flows3 with unsanitized paths
validate_options (includes\templates\license\license-client.php:889)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
6 unprotected

Borderless – Addons and Templates for Elementor Attack Surface

Entry Points9
Unprotected6

AJAX Handlers 9

authwp_ajax_borderless_ajax_add_zipped_fontincludes\icon-manager\icon-manager.php:26
authwp_ajax_borderless_ajax_remove_zipped_fontincludes\icon-manager\icon-manager.php:27
authwp_ajax_library_upload_manual_import_filesincludes\library\inc\BorderlessLibraryImporter.php:31
authwp_ajax_library_import_demo_dataincludes\library\inc\BorderlessLibraryImporter.php:32
authwp_ajax_library_import_customizer_dataincludes\library\inc\BorderlessLibraryImporter.php:33
authwp_ajax_library_after_import_dataincludes\library\inc\BorderlessLibraryImporter.php:34
authwp_ajax_library_install_pluginincludes\library\inc\PluginInstaller.php:14
authwp_ajax_cf7_datamodules\elementor\helper.php:38
authwp_ajax_dismissed_promotional_notice_handlermodules\elementor\helper.php:85
WordPress Hooks 91
actionwp_enqueue_scriptsborderless.php:170
actionwp_enqueue_scriptsborderless.php:171
actionwp_headborderless.php:190
actionadmin_menuincludes\admin\api-settings.php:5
actionadmin_initincludes\admin\api-settings.php:6
actionwp_enqueue_scriptsincludes\class-borderless.php:128
actionwp_enqueue_scriptsincludes\class-borderless.php:129
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:308
actionsave_postincludes\custom-post-types\custom-post-types.php:309
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:455
actionsave_postincludes\custom-post-types\custom-post-types.php:456
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:566
actionsave_postincludes\custom-post-types\custom-post-types.php:567
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:713
actionsave_postincludes\custom-post-types\custom-post-types.php:714
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:860
actionsave_postincludes\custom-post-types\custom-post-types.php:861
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:1007
actionsave_postincludes\custom-post-types\custom-post-types.php:1008
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:1154
actionsave_postincludes\custom-post-types\custom-post-types.php:1155
actionadd_meta_boxesincludes\custom-post-types\custom-post-types.php:1301
actionsave_postincludes\custom-post-types\custom-post-types.php:1302
actioninitincludes\custom-post-types\custom-post-types.php:1437
actioninitincludes\custom-post-types\templates.php:64
actionadmin_menuincludes\custom-post-types\templates.php:79
actionwp_enqueue_scriptsincludes\icon-manager\icon-manager.php:671
actionadmin_menuincludes\library\inc\BorderlessLibraryImporter.php:29
actionadmin_enqueue_scriptsincludes\library\inc\BorderlessLibraryImporter.php:30
actionafter_setup_themeincludes\library\inc\BorderlessLibraryImporter.php:35
actionuser_admin_noticesincludes\library\inc\BorderlessLibraryImporter.php:36
actionadmin_noticesincludes\library\inc\BorderlessLibraryImporter.php:37
actionall_admin_noticesincludes\library\inc\BorderlessLibraryImporter.php:38
actionadmin_initincludes\library\inc\BorderlessLibraryImporter.php:39
actionset_object_termsincludes\library\inc\BorderlessLibraryImporter.php:40
filterupload_mimesincludes\library\inc\Helpers.php:303
actionlibrary/before_content_import_executionincludes\library\inc\ImportActions.php:7
actionlibrary/after_content_import_executionincludes\library\inc\ImportActions.php:9
actionlibrary/after_content_import_executionincludes\library\inc\ImportActions.php:10
actionlibrary/after_content_import_executionincludes\library\inc\ImportActions.php:11
actionlibrary/customizer_import_executionincludes\library\inc\ImportActions.php:13
actionlibrary/after_all_import_executionincludes\library\inc\ImportActions.php:15
actionlibrary/widget_settings_arrayincludes\library\inc\ImportActions.php:18
filterwxr_importer.pre_process.userincludes\library\inc\Importer.php:57
filterwxr_importer.pre_process.postincludes\library\inc\Importer.php:59
filterintermediate_image_sizes_advancedincludes\library\inc\Importer.php:62
actionlibrary/plugin_intaller_before_plugin_activationincludes\library\inc\PluginInstaller.php:12
filterlibrary/time_for_one_ajax_callincludes\library\inc\WPCLICommands.php:144
filterwxr_importer.pre_process.termincludes\library\inc\WXRImporter.php:13
filterpt-library/import_filesincludes\library\templates\templates.php:21
filterlibrary/register_pluginsincludes\library\templates\templates.php:86
actionpt-library/after_importincludes\library\templates\templates.php:100
actionadmin_menuincludes\templates\dashboard.php:15
actionadmin_initincludes\templates\dashboard.php:16
actionadmin_enqueue_scriptsincludes\templates\dashboard.php:60
actionadmin_menuincludes\templates\dashboard.php:76
actionadmin_initincludes\templates\license\license-client.php:199
actionadmin_initincludes\templates\license\license-client.php:203
actionadmin_menuincludes\templates\license\license-client.php:209
actionadmin_initincludes\templates\license\license-client.php:210
actionadmin_noticesincludes\templates\license\license-client.php:213
actionadmin_noticesincludes\templates\license\license-client.php:263
filterplugin_auto_update_setting_htmlincludes\templates\license\license-client.php:273
filterauto_update_pluginincludes\templates\license\license-client.php:346
filterauto_update_themeincludes\templates\license\license-client.php:348
filterpre_set_site_transient_update_pluginsincludes\templates\license\license-client.php:1196
filterplugins_apiincludes\templates\license\license-client.php:1197
filterpre_set_site_transient_update_themesincludes\templates\license\license-client.php:1199
actionplugins_loadedincludes\templates\license\license.php:39
actionenqueue_block_editor_assetsmodules\block-editor\contact-information\contact-information.php:22
actionwp_enqueue_scriptsmodules\block-editor\contact-information\contact-information.php:33
actionenqueue_block_editor_assetsmodules\block-editor\social-icons\social-icons.php:22
actionwp_enqueue_scriptsmodules\block-editor\social-icons\social-icons.php:33
actionenqueue_block_editor_assetsmodules\block-editor\spacer\spacer.php:22
actionelementor/frontend/before_register_stylesmodules\elementor\assets.php:14
actionelementor/frontend/before_register_scriptsmodules\elementor\assets.php:16
actionelementor/frontend/before_enqueue_scriptsmodules\elementor\assets.php:17
actionelementor/editor/after_enqueue_stylesmodules\elementor\assets.php:19
actionelementor/preview/enqueue_stylesmodules\elementor\assets.php:20
actionplugins_loadedmodules\elementor\elementor.php:51
actionelementor/initmodules\elementor\elementor.php:82
actionadmin_noticesmodules\elementor\elementor.php:103
actionadmin_noticesmodules\elementor\elementor.php:109
actionelementor/widgets/widgets_registeredmodules\elementor\elementor.php:130
actionelementor/elements/categories_registeredmodules\elementor\elementor.php:131
filterthe_contentmodules\related-posts\related-posts.php:102
actionvc_after_initmodules\wpbakery\custom-default-elements.php:13
actionadmin_enqueue_scriptsmodules\wpbakery\paramns\icon-manager-param.php:6
actionplugins_loadedmodules\wpbakery\wpbakery.php:11
actionadmin_enqueue_scriptsmodules\wpbakery\wpbakery.php:13
actioninitmodules\wpbakery\wpbakery.php:20
Maintenance & Trust

Borderless – Addons and Templates for Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 27, 2025
PHP min version8.0
Downloads163K

Community Trust

Rating100/100
Number of ratings3
Active installs5K
Alternatives

Borderless – Addons and Templates for Elementor Alternatives

Advance Themes Assistant – Elementor addon Theme Customization, Optimization, lightweight Widgets

Advance Themes Assistant – Elementor addon Theme Customization, Optimization, lightweight Widgets

themes-assistant

A
100

Advance Themes Assistant enhances your WordPress experience with Elementor widgets, theme helpers, and advanced theme options for seamless website cus &hellip;

0 No CVEs
Essential Addons for Elementor – Popular Elementor Templates & Widgets

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

B
76

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs
Premium Addons for Elementor – Powerful Elementor Templates & Widgets

Premium Addons for Elementor – Powerful Elementor Templates & Widgets

premium-addons-for-elementor

A
95

Elementor Carousel, Mega Menu, Posts List/Slider, Media Gallery, WooCommerce Widgets, Display Conditions, Premade Templates & more.

700K 35 CVEs
Royal Addons for Elementor – Addons and Templates Kit for Elementor

Royal Addons for Elementor – Addons and Templates Kit for Elementor

royal-elementor-addons

C
50

Elementor templates, Header footer builder, Elementor Post Grid, Woocommerce Grid builder, Slider, Forms, Gallery, Nav menu addons, Elementor widgets.

600K 1 unpatched
Unlimited Elements For Elementor

Unlimited Elements For Elementor

unlimited-elements-for-elementor

B
76

Elementor all-in-one addons pack with the best widgets for Elementor, offering 100+ free widgets, templates, and tools to create stunning websites!

300K 29 CVEs
Developer Profile

Borderless – Addons and Templates for Elementor Developer Profile

Visualmodo

3 plugins · 5K total installs

80
trust score
Avg Security Score
88/100
Avg Patch Time
46 days
View full developer profile
Detection Fingerprints

How We Detect Borderless – Addons and Templates for Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/borderless/assets/styles/css/style.css/wp-content/plugins/borderless/assets/scripts/js/custom.js
Script Paths
/wp-content/plugins/borderless/assets/scripts/js/custom.js
Version Parameters
borderless/assets/styles/css/style.css?ver=borderless/assets/scripts/js/custom.js?ver=

HTML / DOM Fingerprints

CSS Classes
borderless-color-primaryborderless-secondary-primaryborderless-color-tertiary
FAQ

Frequently Asked Questions about Borderless – Addons and Templates for Elementor