Nov. 21, 2023, 4:07 a.m. | Sandeep Vishwakarma

InfoSec Write-ups - Medium

A security vulnerability has been detected in Essential Addons for Elementor, a widely utilized WordPress plugin with over one million active installations. This specific flaw, identified as CVE-2023–32243, allows an unauthorized attacker to reset the password for any user on the affected website, providing them with administrator privileges.

Upon conducting a thorough examination of CVE-2023–32243, it was found to impact the password reset feature of the Essential Addons plugin integrated with Elementor. The vulnerability arises from the lack of validation …

wordpress plugins

Security Specialist

@ Protect Democracy | Remote, US

Experienced Security Compliance - HITRUST

@ Gainwell Technologies | Any city, TX, US, 99999

24 x 7 Security Analyst

@ LRQA | Birmingham, GB, B37 7ES

Associate Information Security Governance - #catalystWSP

@ Singtel | Singapore, Singapore

Security Consulting and Risk Officer

@ Metrobank | Taguig, Philippines

Security Threat Analyst

@ Metrobank | Taguig, Philippines