Access violation vulnerability in Elementor Website Builder 3.13.1

The Elementor plugin for WordPress is vulnerable to unauthorized changes to its data. This is because the plugin does not have checks in place to prevent it. This means that people with limited access, such as subscribers, can do things like sign up the site for beta testing, enable safe mode, remigrate globals, and retrieve category items. This affects versions up to and including 3.13.1.

Detected in:

Elementor Website Builder – More than Just a Page Builder fixed vulnerable versions: >= * <= 3.13.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Is this information incorrect? Please leave us a message.