Input validation vulnerability in Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders 5.9.7

The Essential Addons for Elementor is a popular plugin for WordPress that provides templates, widgets, kits, and tools for building websites with Elementor. Unfortunately, there is a security vulnerability in the plugin that allows attackers to insert harmful code into web pages. This can happen when a user with certain permissions edits a page and uses the ‘data-eael-wrapper-link’ wrapper. The plugin does not properly clean or filter the code, making it possible for the attacker’s code to be executed whenever someone visits the affected page. If you are using this plugin, please update to version 5.9.8 or higher to protect your website from this vulnerability.

Detected in:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Is this information incorrect? Please leave us a message.