Home » Vulnerabilities » Access violation vulnerability in Events Addon for Elementor 2.2.3

Latest

Access violation vulnerability in Events Addon for Elementor 2.2.3

CVE-2024-12061

Severity: medium-risk
Status: Open
Publication: December 17, 2024

The Events Addon for Elementor is a plugin for WordPress that allows you to add events to your website. However, there is a security vulnerability in all versions up to 2.2.3 that could allow unauthorized users to see information from private or draft posts created by Elementor. This means that if someone with at least Contributor-level access to your website knows the right code, they could see information that they are not supposed to have access to.

Detected in:

Events Addon for Elementor open vulnerable versions: >= * <= 2.2.3

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Access violation vulnerability in Events Addon for Elementor 2.2.3

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Access violation vulnerability in Events Addon for Elementor 2.2.3

Detected in: