Does JetWidgets For Elementor have any unpatched vulnerabilities?

No. All known vulnerabilities in JetWidgets For Elementor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is JetWidgets For Elementor compatible with WordPress 6.8.5?

According to WordPress.org data, JetWidgets For Elementor 1.0.21 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is JetWidgets For Elementor compatible with PHP 7.0+?

JetWidgets For Elementor requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is JetWidgets For Elementor updated?

JetWidgets For Elementor was last updated on Sep 19, 2025. Frequent updates are generally a positive security signal.

What is JetWidgets For Elementor's security score?

JetWidgets For Elementor has a WP-Safety security score of 95/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

JetWidgets For Elementor Security & Risk Analysis

wordpress.org/plugins/jetwidgets-for-elementor

Addon for Elementor Page builder. It provides the set of widgets to create different kinds of content like pricing tables, posts lists, banners, etc.

10K active installs v1.0.21 PHP 7.0+ WP 4.7+ Updated Sep 19, 2025

elementor-widgetsheadlineimage-comparisonpricing-tablesubscribe-form

A · Safe

CVEs total8

Unpatched0

Last CVEDec 12, 2025

Download

Safety Verdict

Is JetWidgets For Elementor Safe to Use in 2026?

Generally Safe

Score 95/100

JetWidgets For Elementor has a strong security track record. Known vulnerabilities have been patched promptly.

8 known CVEsLast CVE: Dec 12, 2025Updated 6mo ago

Risk Assessment

The static analysis of jetwidgets-for-elementor v1.0.21 reveals a mixed security posture. On the positive side, the plugin demonstrates good practices by exclusively using prepared statements for all SQL queries and properly escaping a very high percentage of its outputs. It also includes a reasonable number of nonce and capability checks, suggesting an awareness of common WordPress security mechanisms. However, a significant concern arises from the presence of one unprotected AJAX handler, which represents a direct entry point for potential attacks if not properly secured by other means.

The taint analysis highlights two flows with unsanitized paths, both classified as high severity. This indicates that user-supplied input in these specific paths is not being adequately sanitized before being used, which could lead to various vulnerabilities, including cross-site scripting or unintended code execution. The plugin's history of 8 medium-severity vulnerabilities, primarily related to Cross-Site Request Forgery and Cross-site Scripting, further reinforces the potential for these types of issues. While there are currently no unpatched CVEs, the recurring nature of these vulnerability types suggests a pattern that needs attention.

In conclusion, while jetwidgets-for-elementor v1.0.21 shows strengths in its handling of SQL and output escaping, the unprotected AJAX handler and high-severity taint flows, coupled with its past vulnerability trends, indicate areas of significant risk. The plugin would benefit from a thorough review and remediation of these identified weaknesses to improve its overall security.

Key Concerns

Unprotected AJAX handler found
2 high severity unsanitized taint flows
8 medium severity CVEs in history

Vulnerabilities

JetWidgets For Elementor Security Vulnerabilities

CVEs by Year

1 CVE in 2021

2021

2 CVEs in 2023

2023

4 CVEs in 2024

2024

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

8 total CVEs

CVE-2025-8195medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JetWidgets For Elementor <= 1.0.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison and Subscribe Widgets

Dec 12, 2025 Patched in 1.0.21 (1d)

CVE-2024-10323medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JetWidgets For Elementor <= 1.0.18 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

Nov 11, 2024 Patched in 1.0.19 (1d)

CVE-2024-4626medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JetWidgets For Elementor <= 1.0.17 - Authenticated (Contributor+) Stored Cross-Site Scripting via layout_type and id Parameters

Jun 19, 2024 Patched in 1.0.18 (1d)

CVE-2024-2507medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JetWidgets For Elementor <= 1.0.16 - Authenticated(Contributor+) Stored Cross-Site Scripting via Widget Button URL

Mar 20, 2024 Patched in 1.0.17 (73d)

CVE-2024-2138medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JetWidgets For Elementor <= 1.0.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Box Widget

Mar 13, 2024 Patched in 1.0.16 (28d)

CVE-2023-0034medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JetWidgets For Elementor <= 1.0.13 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jan 19, 2023 Patched in 1.0.14 (369d)

CVE-2023-0086medium · 5.4Cross-Site Request Forgery (CSRF)

JetWidgets for Elementor <= 1.0.12 - Cross-Site Request Forgery to Settings Update

Jan 4, 2023 Patched in 1.0.13 (384d)

CVE-2021-24268medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JetWidgets For Elementor <= 1.0.8 - Contributor+ Stored Cross-Site Scripting

Apr 13, 2021 Patched in 1.0.9 (1015d)

Code Analysis

Analyzed Mar 16, 2026

JetWidgets For Elementor Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

723 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

93% escaped774 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

save_meta_option (cherry-framework\modules\cherry-post-meta\cherry-post-meta.php:451)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

JetWidgets For Elementor Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_elementor_render_widgetincludes\class-jet-widgets-integration.php:58

WordPress Hooks 101

actionafter_setup_themecherry-framework\cherry-core.php:91

actionafter_setup_themecherry-framework\cherry-core.php:92

actionafter_setup_themecherry-framework\cherry-core.php:95

actionafter_setup_themecherry-framework\cherry-core.php:98

filtercherry_widget_factory_corecherry-framework\cherry-core.php:102

actionafter_switch_themecherry-framework\modules\cherry-customizer\cherry-customizer.php:172

actionafter_switch_themecherry-framework\modules\cherry-customizer\cherry-customizer.php:173

actionswitch_themecherry-framework\modules\cherry-customizer\cherry-customizer.php:176

actionupgrader_process_completecherry-framework\modules\cherry-customizer\cherry-customizer.php:177

actioncustomize_registercherry-framework\modules\cherry-customizer\cherry-customizer.php:198

filtercherry_customizer_get_corecherry-framework\modules\cherry-customizer\cherry-customizer.php:200

actioncustomize_controls_print_stylescherry-framework\modules\cherry-customizer\inc\class-cherry-wp-customize-iconpicker.php:88

actionadmin_noticescherry-framework\modules\cherry-db-updater\cherry-db-updater.php:99

actionadmin_initcherry-framework\modules\cherry-db-updater\cherry-db-updater.php:100

actionwp_headcherry-framework\modules\cherry-dynamic-css\cherry-dynamic-css.php:115

actionwp_enqueue_scriptscherry-framework\modules\cherry-dynamic-css\cherry-dynamic-css.php:118

actionwp_footercherry-framework\modules\cherry-dynamic-css\cherry-dynamic-css.php:150

actionwp_footercherry-framework\modules\cherry-dynamic-css\cherry-dynamic-css.php:151

actioncustomize_preview_initcherry-framework\modules\cherry-google-fonts-loader\cherry-google-fonts-loader.php:84

actioncustomize_save_aftercherry-framework\modules\cherry-google-fonts-loader\cherry-google-fonts-loader.php:85

actionswitch_themecherry-framework\modules\cherry-google-fonts-loader\cherry-google-fonts-loader.php:86

actionwp_enqueue_scriptscherry-framework\modules\cherry-google-fonts-loader\cherry-google-fonts-loader.php:92

actionadmin_enqueue_scriptscherry-framework\modules\cherry-handler\cherry-handler.php:105

actionwp_enqueue_scriptscherry-framework\modules\cherry-handler\cherry-handler.php:106

actionwp_print_scriptscherry-framework\modules\cherry-handler\cherry-handler.php:107

actionadmin_enqueue_scriptscherry-framework\modules\cherry-interface-builder\cherry-interface-builder.php:130

actionadmin_enqueue_scriptscherry-framework\modules\cherry-js-core\cherry-js-core.php:83

actionwp_enqueue_scriptscherry-framework\modules\cherry-js-core\cherry-js-core.php:84

actionwp_print_scriptscherry-framework\modules\cherry-js-core\cherry-js-core.php:85

filtercherry_get_embed_post_formatscherry-framework\modules\cherry-post-formats-api\cherry-post-formats-api.php:141

filterpost_gallerycherry-framework\modules\cherry-post-formats-api\cherry-post-formats-api.php:145

actionwp_enqueue_scriptscherry-framework\modules\cherry-post-formats-api\cherry-post-formats-api.php:148

filterinitcherry-framework\modules\cherry-post-formats-api\inc\class-cherry-facebook-embed.php:37

actionadd_meta_boxescherry-framework\modules\cherry-post-meta\cherry-post-meta.php:109

actionsave_postcherry-framework\modules\cherry-post-meta\cherry-post-meta.php:110

actionadmin_enqueue_scriptscherry-framework\modules\cherry-term-meta\cherry-term-meta.php:89

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\cherry-ui-elements.php:91

actionwp_enqueue_scriptscherry-framework\modules\cherry-ui-elements\cherry-ui-elements.php:92

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-button\ui-button.php:54

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-checkbox\ui-checkbox.php:68

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-colorpicker\ui-colorpicker.php:61

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-dimensions\ui-dimensions.php:86

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-iconpicker\ui-iconpicker.php:103

actionadmin_footercherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-iconpicker\ui-iconpicker.php:104

actioncustomize_controls_print_footer_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-iconpicker\ui-iconpicker.php:105

filtercherry_handler_response_datacherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-iconpicker\ui-iconpicker.php:106

filtercherry_ui_add_repater_datacherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-iconpicker\ui-iconpicker.php:177

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-media\ui-media.php:64

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-radio\ui-radio.php:82

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-repeater\ui-repeater.php:92

actionadmin_footercherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-repeater\ui-repeater.php:93

actioncustomize_controls_print_footer_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-repeater\ui-repeater.php:95

filtercherry_ui_is_repeatercherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-repeater\ui-repeater.php:123

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-select\ui-select.php:91

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-slider\ui-slider.php:63

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-stepper\ui-stepper.php:64

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-switcher\ui-switcher.php:66

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-text\ui-text.php:63

actionadmin_enqueue_scriptscherry-framework\modules\cherry-ui-elements\inc\ui-elements\ui-textarea\ui-textarea.php:63

filtercherry_widget_factory_corecherry-framework\modules\cherry-widget-factory\cherry-widget-factory.php:77

actionsave_postcherry-framework\modules\cherry-widget-factory\inc\class-cherry-abstract-widget.php:100

actiondeleted_postcherry-framework\modules\cherry-widget-factory\inc\class-cherry-abstract-widget.php:101

actionswitch_themecherry-framework\modules\cherry-widget-factory\inc\class-cherry-abstract-widget.php:102

actionadmin_initcherry-framework\modules\cherry-widget-factory\inc\class-cherry-abstract-widget.php:105

actionadmin_enqueue_scriptscherry-framework\modules\cherry-widget-factory\inc\class-cherry-abstract-widget.php:107

actionwidgets.phpcherry-framework\modules\cherry-widget-factory\inc\class-cherry-abstract-widget.php:110

filterwidget_display_callbackcherry-framework\modules\cherry-widget-factory\inc\class-cherry-abstract-widget.php:112

actionwp_footercherry-framework\modules\cherry5-assets-loader\inc\cherry5-assets-loader-handle.php:54

actionadmin_enqueue_scriptscherry-framework\modules\cherry5-insert-shortcode\cherry5-insert-shortcode.php:152

actionadmin_enqueue_scriptscherry-framework\modules\cherry5-insert-shortcode\cherry5-insert-shortcode.php:155

filtercherry5-is__shortcode_listcherry-framework\modules\cherry5-insert-shortcode\cherry5-insert-shortcode.php:228

actionmedia_buttonscherry-framework\modules\cherry5-insert-shortcode\inc\class-cherry5-insertion-button.php:47

actioncherry5-insert-shortcodecherry-framework\modules\cherry5-insert-shortcode\inc\class-cherry5-insertion-button.php:48

actionadmin_print_footer_scriptscherry-framework\modules\cherry5-insert-shortcode\inc\class-cherry5-insertion-button.php:67

actionadmin_enqueue_scriptscherry-framework\modules\cherry5-interface-builder\cherry5-interface-builder.php:130

actionwp_enqueue_scriptsincludes\class-jet-widgets-assets.php:27

actionelementor/frontend/before_register_scriptsincludes\class-jet-widgets-assets.php:28

actionadmin_enqueue_scriptsincludes\class-jet-widgets-assets.php:29

actionelementor/initincludes\class-jet-widgets-integration.php:51

actionelementor/widgets/widgets_registeredincludes\class-jet-widgets-integration.php:53

actionelementor/widgets/widgets_registeredincludes\class-jet-widgets-integration.php:54

actionelementor/controls/controls_registeredincludes\class-jet-widgets-integration.php:56

actionelementor/frontend/before_enqueue_scriptsincludes\class-jet-widgets-integration.php:60

actionelementor/editor/before_enqueue_scriptsincludes\class-jet-widgets-integration.php:61

actionelementor/editor/after_enqueue_stylesincludes\class-jet-widgets-integration.php:62

actionadmin_enqueue_scriptsincludes\class-jet-widgets-settings.php:63

actionadmin_menuincludes\class-jet-widgets-settings.php:64

actioninitincludes\class-jet-widgets-settings.php:65

actionadmin_noticesincludes\class-jet-widgets-settings.php:66

actioninitincludes\class-jet-widgets-shortcodes.php:43

filterupload_mimesincludes\class-jet-widgets-svg-manager.php:41

actionadmin_headincludes\class-jet-widgets-svg-manager.php:42

filterwp_handle_sideload_prefilterincludes\class-jet-widgets-svg-manager.php:44

filterwp_handle_upload_prefilterincludes\class-jet-widgets-svg-manager.php:45

actionafter_setup_themejetwidgets-for-elementor.php:88

actionafter_setup_themejetwidgets-for-elementor.php:91

actionafter_setup_themejetwidgets-for-elementor.php:93

actioninitjetwidgets-for-elementor.php:96

actioninitjetwidgets-for-elementor.php:98

filterjet-widgets/tools/esc-attrjetwidgets-for-elementor.php:100

actiontgmpa_registerjetwidgets-for-elementor.php:219

Maintenance & Trust

JetWidgets For Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedSep 19, 2025

PHP min version7.0

Downloads269K

Community Trust

Rating100/100

Number of ratings7

Active installs10K

Alternatives

JetWidgets For Elementor Alternatives

Unlimited Pricing Table for Elementor

unlimited-pricing-table-for-elementor

Create and manage unlimited, responsive pricing tables effortlessly with Unlimited Pricing Table for Elementor.

10 No CVEs

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

elementskit-lite

Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget

2.0M 21 CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Ultimate Addons for Elementor

header-footer-elementor

Powerful Elementor addon with advanced Elementor widgets, templates, WooCommerce widgets & Header-Footer builder to build professional websites fa …

2.0M 12 CVEs

Premium Addons for Elementor – Powerful Elementor Templates & Widgets

premium-addons-for-elementor

Elementor Carousel, Mega Menu, Posts List/Slider, Media Gallery, WooCommerce Widgets, Display Conditions, Premade Templates & more.

700K 35 CVEs

Developer Profile

JetWidgets For Elementor Developer Profile

jetmonsters

33 plugins · 326K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

193 days

View full developer profile

Detection Fingerprints

How We Detect JetWidgets For Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/jetwidgets-for-elementor/assets/css/jet-widgets-frontend.css/wp-content/plugins/jetwidgets-for-elementor/assets/css/jet-widgets-editor.css/wp-content/plugins/jetwidgets-for-elementor/assets/js/jet-widgets-frontend.js/wp-content/plugins/jetwidgets-for-elementor/assets/js/jet-widgets-editor.js/wp-content/plugins/jetwidgets-for-elementor/includes/lib/jet-widgets-editor-helper.js/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-js-core/assets/js/cherry-js-core.min.js/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-utility/assets/js/cherry-utility.min.js

/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-assets-loader/assets/js/cherry5-assets-loader.min.js

Script Paths

/wp-content/plugins/jetwidgets-for-elementor/assets/js/jet-widgets-frontend.js/wp-content/plugins/jetwidgets-for-elementor/assets/js/jet-widgets-editor.js/wp-content/plugins/jetwidgets-for-elementor/includes/lib/jet-widgets-editor-helper.js/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-js-core/assets/js/cherry-js-core.min.js/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-utility/assets/js/cherry-utility.min.js

/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-assets-loader/assets/js/cherry5-assets-loader.min.js

Version Parameters

/wp-content/plugins/jetwidgets-for-elementor/assets/css/jet-widgets-frontend.css?ver=/wp-content/plugins/jetwidgets-for-elementor/assets/css/jet-widgets-editor.css?ver=/wp-content/plugins/jetwidgets-for-elementor/assets/js/jet-widgets-frontend.js?ver=/wp-content/plugins/jetwidgets-for-elementor/assets/js/jet-widgets-editor.js?ver=/wp-content/plugins/jetwidgets-for-elementor/includes/lib/jet-widgets-editor-helper.js?ver=

/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-js-core/assets/js/cherry-js-core.min.js?ver=

/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-utility/assets/js/cherry-utility.min.js?ver=

/wp-content/plugins/jetwidgets-for-elementor/cherry-framework/modules/cherry-assets-loader/assets/js/cherry5-assets-loader.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

jet-widgets-wrapperjet-widget-headingjet-widget-buttonjet-widget-icon-boxjet-widget-image-boxjet-widget-sliderjet-widget-carouseljet-widget-accordion+21 more

Data Attributes

data-widget-settings

JS Globals

jetWidgetsFrontendjetWidgetsEditorJetWidgetsEditor

FAQ