Privilege Escalation in Plus Addons for Elementor Plugin by WordPress
CVE-2021-4331
Key Information:
Summary
The Plus Addons for Elementor plugin for WordPress presents a vulnerability that permits privilege escalation in versions up to and including 4.1.9 (pro) and 2.0.6 (free). This issue arises from the registration form feature, where users can select the default role for new registrations. Unfortunately, this field remains visible to lower-level users, enabling individuals with limited permissions, such as contributors, to assign themselves higher roles like administrator. This flaw allows such users to potentially elevate their privileges without requiring any admin intervention.
Affected Version(s)
The Plus Addons for Elementor | FREE Elementor Widgets & Elementor Templates, Header Menu, Blog Post Builder, Dark Mode, Full-Page Scroll, Cross Domain Copy * <= 2.0.6
The Plus Addons for Elementor Page Builder * <= 4.1.9
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved