all InfoSec news
Vulnerability in Essential Addons for Elementor Leads to Mass Infection
Sucuri Blog blog.sucuri.net
On May 11th, 2023, the very popular WordPress plugin Essential Addons for Elementor released a patch for a critical privilege escalation vulnerability, initially discovered by PatchStack. The technical details of this vulnerability can be found on their recent blog post. Over one million websites use this plugin and the fallout from this has been absolutely massive, with over 6,000 detections by SiteCheck already so far and 1637 detections in publicWWW scan results.
Naturally, if you are a website owner using …
black hat tactics blog blog post critical escalation essential addons for elementor hacked websites infection malware may patch plugin popular privilege privilege escalation technical vulnerability website malware infections websites website security wordpress wordpress plugin wordpress plugins and themes wordpress security