Zero Day total site takeover exploit discovered in popular WordPress plugin for Elementor page builder. A Zero Day vulnerability has been discovered in the WordPress Plus Addons for Elementor. The exploit allows a full-site takeover. Security researchers recommend immediately disabling the plugin to avoid being hacked.
The Plus Addons for Elementor is a suite of over one hundred widgets, templates and blocks that extends the design possibilities for sites that use the Elementor page builder plugin.
Elementor is a page builder plugin that extends the native WordPress editor to make it easier to create attractive websites.
The vulnerability is not on Elementor though. The vulnerability exists on a plugin that extends the design capabilities of Elementor.
WordPress Ultimate Addons for Elementor Vulnerability Affects +1 Million. The publishers of the Ultimate Addons for Elementor plugin notified customers of a vulnerability affecting two of their plugins.
Security researchers at Wordfence discovered a vulnerability on sites built with Elementor. The exploit is a type designated as a Stored Cross-site Scripting (XSS) vulnerability. It has the potential to enable attackers to seize control of a website.
WordPress is the most preferred blogging platform and CMS. Let's check out the 10 effective uses of WordPress beyond blogging.
Offshore Wordpress development in India based company App Developers India IT Services offering to hire wordpress programmers also offering PSD to Wordpress Conversion service.
Vulnerabilities in 17+ Elementor Add-on Plugins for WordPress. Millions of WordPress sites affected by vulnerabilities in Elementor add-on plugins. Wordfence security researchers discovered that virtually every plugin tested that adds functionality to Elementor had a vulnerability. Many of the contacted plugin publishers updated their plugins but not all of them responded, including premium plugins.