Privilege Escalation in Plus Addons for Elementor Plugin by WordPress
CVE-2021-4331

8.8HIGH

Summary

The Plus Addons for Elementor plugin for WordPress presents a vulnerability that permits privilege escalation in versions up to and including 4.1.9 (pro) and 2.0.6 (free). This issue arises from the registration form feature, where users can select the default role for new registrations. Unfortunately, this field remains visible to lower-level users, enabling individuals with limited permissions, such as contributors, to assign themselves higher roles like administrator. This flaw allows such users to potentially elevate their privileges without requiring any admin intervention.

Affected Version(s)

The Plus Addons for Elementor | FREE Elementor Widgets & Elementor Templates, Header Menu, Blog Post Builder, Dark Mode, Full-Page Scroll, Cross Domain Copy * <= 2.0.6

The Plus Addons for Elementor Page Builder * <= 4.1.9

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Chloe Chamberland
.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.