Input validation vulnerability in Elementor Website Builder – More Than Just a Page Builder 3.25.9

The Elementor Website Builder is a plugin for WordPress that helps create websites. Unfortunately, it has a security vulnerability that allows attackers to insert harmful code into the website. This can happen through the Typography Settings feature in all versions up to 3.25.9. This means that anyone with contributor-level access or higher can potentially add harmful code to a page, which will execute whenever someone visits that page.

Detected in:

Elementor Website Builder – More than Just a Page Builder fixed vulnerable versions: >= * <= 3.25.9

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Is this information incorrect? Please leave us a message.