WordPress Pugin Vulnerability Puts Millions Of Websites At Risk

by | 04-04-2023

4316 Views

Elementor Pro is a famous plugin which is running on more than 11 million WordPress sites at the moment. This plugin allows developers to create exquisite websites, enabling a handful of features. In a shocking revelation, it has been discovered that there is an extremely critical vulnerability in Elementor Pro which allows perpetrators to gain complete control of any WordPress site using this extension.

As per the sources, this vulnerability was first discovered by a NinTechNet researcher named Jerome Bruandet. Meanwhile, other researchers have also highlighted the fact that this vulnerability is currently under exploitation from attackers with compromised files uploaded to several websites.

About the issue itself, the said vulnerability is the result of a broken access control on the WooCommerce plugin module. This vulnerability allows unauthorized users to modify the WordPress database with serious consequences. Bruandet revealed in his blog that this flaw allows any authenticated or unauthorized person to leverage the vulnerability and create an administrator account to elevate privileges. In order for this vulnerability to be exploited, a combination of Elementor Pro and and WooCommerce plugins must be installed on the WordPress site.

Acknowledging the presence of this lethal vulnerability, the developer of Elementor acted swiftly and released a patch in the version 3.11.7 to counter the threat. But the problem is far from over.

Not all users and developers have upgraded their WordPress sites and any website using an Elementor version 3.11.6 or lower has a potentially dangerous flaw that can be exploited by hackers with catastrophic outcomes.

Recent Posts

Custom WordPress vs Premium Themes
Custom WordPress vs Premium Themes: Which Offers Better SEO Performance?

When building a business website, the choice between Custom WordPress vs Premium Themes is one of the most important decisions you will make. Your website is your digital storefront, and its foundation determines whether customers can find you on Google. Choosing the right path impacts your site speed, security, and long-term search engine rankings. Are […]

Autonomous AI Agents
How Do Autonomous AI Agents Actually Work?

Introduction Autonomous AI agents are changing the way businesses work. These smart systems can think, plan, and act on their own. They do not need a human to guide every step. They are not just simple tools. They are like digital workers that make decisions and finish tasks automatically. More and more companies are now […]

Autonomous AI Agents
Autonomous AI Agents in Digital Transformation 

Imagine having a super-smart digital assistant that does not just follow your orders it actually thinks, plans, and gets things done all by itself. That is exactly what autonomous AI agents are doing for businesses today. These intelligent systems are helping companies work faster, smarter, and more efficiently than ever before. Autonomous AI agents can […]

How Large Language Models Work: A Complete Guide to AI’s Most Powerful Architecture

Learn how Large Language Models work, their architecture, benefits, and business value in this complete guide to AI’s most powerful technology.

Profile Picture

The WordPress team at Ropstam Solutions consists of highly skilled professionals specializing in WordPress development and customized digital solutions. With more than a decade of experience in this field, the team prides itself on delivering innovative and impactful content that showcases its dedication to excellence and advancement within the WordPress realm.

WordPress Team Lead

Related Posts

Top Reasons Why WordPress Dominates the Web in 2026

WordPress continues to lead the global digital landscape for companies of every size. Business owners trust this platform for steady growth, simple management, and measurable results. This guide...
Flutter Pros and Cons

Flutter Pros and Cons – Can You Use it for App Development?

Flutter began as a startup and later was obtained by Google. Today, it's a free & open-source project and a software development kit (SDK) which leverages Dart (a programming language novel to...
Shopify store maintenance checklist

Shopify Store Maintenance Checklist – Definitive Guide

More people like to shop online using Shopify stores, with 56% preferring it over going to physical stores. This creates both opportunities and challenges for retailers. They need to keep up with...
Checklist to Build Successful MVP

10-Step Checklist to Build a Successful MVP

MVPs are seen as broader in comparison with startups. Established companies can also apply this concept. Moreover, before launching the product, we must know how to create a minimum viable product....

Why our clients
love us?

Our clients love us because we prioritize effective communication and are committed to delivering high-quality software solutions that meet the highest standards of excellence.

anton testimonial for ropstam solutions

“They met expectations with every aspect of design and development of the product, and we’ve seen an increase in downloads and monthly users.”

Anton Neugebauer, CEO, RealAdvice Agency
mike stanzyk testimonial for ropstam solutions

“Their dedication to their clients is really impressive.  Ropstam Solutions Inc. communicates effectively with the client to ensure customer satisfaction.”

Mike Stanzyk, CEO, Stanzyk LLC
Jackie Philbin

“Ropstam was an excellent partner in bringing our vision to life! They managed to strike the right balance between aesthetics and functionality, ensuring that the end product was not only visually appealing but also practical and usable.”

Jackie Philbin, Director - Nutrition for Longevity

Supercharge your software development with our expert team – get in touch today!