The LA-Studio Element Kit for Elementor plugin used in WordPress can be attacked by hackers through the Image Compare and Google Maps widgets. This is because the plugin does not properly clean or protect user input, allowing attackers with certain levels of access to insert harmful website code onto pages. This code will then run whenever someone visits the affected page.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
