Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin The Plus Addons for Elementor Security Bypass - CVE-2021-24359 - Vulnerability Database
WP Plugin Theplus_Elementor_Addon

WordPress Plugin The Plus Addons for Elementor Security Bypass - CVE-2021-24359

Medium
Reference: CVE-2021-24359
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24359
Title: WordPress Plugin The Plus Addons for Elementor Security Bypass
Overview:

WordPress Plugin The Plus Addons for Elementor is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently send arbitrary reset password emails to registered users on behalf of the WordPress site. WordPress Plugin The Plus Addons for Elementor version 4.1.10 is vulnerable prior versions may also be affected.