CVE-2025-11220 | Elementor Plugin up to 3.33.3 on WordPress Text Path Widget cross site scripting

A vulnerability categorized as problematic has been discovered in Elementor Plugin up to 3.33.3 on WordPress. The impacted element is an unknown function of the component Text Path Widget. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-11220. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More