Input validation vulnerability in The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce 5.5.2

The Plus Addons for Elementor is a plugin for WordPress that adds extra features and design options to the Elementor page builder. Unfortunately, versions up to 5.5.2 are vulnerable to a type of cyber attack called Stored Cross-Site Scripting. This means that hackers with certain levels of access can insert harmful code into pages created with the plugin, which will then run whenever someone views those pages.

Detected in:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Is this information incorrect? Please leave us a message.