The ElementsKit plugin for WordPress, which adds extra features to the Elementor page builder, has a security issue where attackers can insert harmful code into pages using the Image Accordion widget. This can be done by users with certain levels of access, and can cause the code to run whenever someone views the affected page.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
