A vulnerability was recently reported for Essential Addons for Elementor, a plugin with over 1 million uses on WordPress. Due to this vulnerability, it is possible to reset and recover WordPress login information.
This vulnerability, which PatchStack discovered on May 8, 2023, was coded as CVE-2023-32243. The scope of this vulnerability includes Essential Addons for Elementor between versions 5.4.0 and 5.7.1. To avoid exposure, we recommend that you update your plugins to the latest version of Elementor and check your WordPress files for any vulnerabilities.
Since WordPress is an open source software and the plugins developed on it usually have open source code, it is possible to constantly scan and detect security vulnerabilities in plugins and themes related to these content management systems. Don't forget to use reliable plugins and keep your plugins and especially WordPress up to date in case of any possible situation.
Vulnerability: CVE-2023-32243
Scope of Vulnerability:
Essential Addons for Elementor 5.4.0 - 5.7.1
Plugin Link: https://wordpress.org/plugins/essential-addons-for-elementor-lite/
You need to update to version 5.7.2 of Essential Addons for Elementor.
If you find a file containing a security vulnerability or another user on your current website, we can restore a previous website backup, and then update your plugins and WordPress.
