This content is viewable by Everyone
High Actively Exploited Vulnerability in WordPress Plugin
WordPress released a security update to address a High Actively Exploited vulnerability in Elementor Essential Addons for Elementor Plugin. Exploitation of this vulnerability could allow a remote, unauthenticated attacker to modify passwords for known usernames and escalate privileges. A proof-of concept (PoC) code is publicly available and exploitation of this vulnerability has been reported in the wild.
For a complete description of the vulnerabilities and affected systems go to CVE-2023-32243 Detail.