CVE-2023-32243

CVSS V2 None CVSS V3 None

Description

Improper Authentication vulnerability in WPDeveloper Essential Addons for Elementor allows Privilege Escalation. This issue affects Essential Addons for Elementor: from 5.4.0 through 5.7.1.

Overview

CVE ID
CVE-2023-32243

Assigner
audit@patchstack.com

Vulnerability Status
Received

Published Version
2023-05-12T08:15:09

Last Modified Date
2023-05-12T08:15:09

Weakness Enumerations

CWE	URL
CWE-287	http://cwe.mitre.org/data/definitions/287.html

References

Reference URL	Reference Tags
https://patchstack.com/articles/critical-privilege-escalation-in-essential-addons-for-elementor-plugin-affecting-1-million-sites?_s_id=cve
https://patchstack.com/database/vulnerability/essential-addons-for-elementor-lite/wordpress-essential-addons-for-elementor-plugin-5-4-0-5-7-1-unauthenticated-privilege-escalation-vulnerability?_s_id=cve

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-32243
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32243

History

Created	Old Value	New Value	Data Type	Notes
2023-05-12 09:00:55				Added to TrackCVE
2023-05-12 09:00:56			Weakness Enumeration	new