WordPress Pugin Vulnerability Puts Millions Of Websites At Risk

by | 04-04-2023

4329 Views

Elementor Pro is a famous plugin which is running on more than 11 million WordPress sites at the moment. This plugin allows developers to create exquisite websites, enabling a handful of features. In a shocking revelation, it has been discovered that there is an extremely critical vulnerability in Elementor Pro which allows perpetrators to gain complete control of any WordPress site using this extension.

As per the sources, this vulnerability was first discovered by a NinTechNet researcher named Jerome Bruandet. Meanwhile, other researchers have also highlighted the fact that this vulnerability is currently under exploitation from attackers with compromised files uploaded to several websites.

About the issue itself, the said vulnerability is the result of a broken access control on the WooCommerce plugin module. This vulnerability allows unauthorized users to modify the WordPress database with serious consequences. Bruandet revealed in his blog that this flaw allows any authenticated or unauthorized person to leverage the vulnerability and create an administrator account to elevate privileges. In order for this vulnerability to be exploited, a combination of Elementor Pro and and WooCommerce plugins must be installed on the WordPress site.

Acknowledging the presence of this lethal vulnerability, the developer of Elementor acted swiftly and released a patch in the version 3.11.7 to counter the threat. But the problem is far from over.

Not all users and developers have upgraded their WordPress sites and any website using an Elementor version 3.11.6 or lower has a potentially dangerous flaw that can be exploited by hackers with catastrophic outcomes.

Recent Posts

Custom WordPress vs Premium Themes
Custom WordPress vs Premium Themes: Which Offers Better SEO Performance?

When building a business website, the choice between Custom WordPress vs Premium Themes is one of the most important decisions you will make. Your website is your digital storefront, and its foundation determines whether customers can find you on Google. Choosing the right path impacts your site speed, security, and long-term search engine rankings. Are […]

Autonomous AI Agents
How Do Autonomous AI Agents Actually Work?

Introduction Autonomous AI agents are changing the way businesses work. These smart systems can think, plan, and act on their own. They do not need a human to guide every step. They are not just simple tools. They are like digital workers that make decisions and finish tasks automatically. More and more companies are now […]

Autonomous AI Agents
Autonomous AI Agents in Digital Transformation 

Imagine having a super-smart digital assistant that does not just follow your orders it actually thinks, plans, and gets things done all by itself. That is exactly what autonomous AI agents are doing for businesses today. These intelligent systems are helping companies work faster, smarter, and more efficiently than ever before. Autonomous AI agents can […]

How Large Language Models Work: A Complete Guide to AI’s Most Powerful Architecture

Learn how Large Language Models work, their architecture, benefits, and business value in this complete guide to AI’s most powerful technology.

Profile Picture

The WordPress team at Ropstam Solutions consists of highly skilled professionals specializing in WordPress development and customized digital solutions. With more than a decade of experience in this field, the team prides itself on delivering innovative and impactful content that showcases its dedication to excellence and advancement within the WordPress realm.

WordPress Team Lead

Related Posts

MERN Stack Auth: Secure User Management

Authentication is fundamental to modern web applications, ensuring only authorized users can access protected resources. The MERN (MongoDB, Express.js, React, Node.js) stack provides a comprehensive...
adobe and google join hands

Adobe & Google Join Hands to Bring Image Generation Abilities to Bard

Google is partnering with Adobe to bring much-awaited features to Bard. The AI-powered chatbot will be able to generate images from text prompts with the help of Firefly. Furthermore, users can edit...
hooks in react

A Comprehensive Guide to React Hooks (2024)

Since their introduction in React 16.8, React Hooks have taken the world of web development by storm. In simple words, Hooks in React are functions that allow you to "hook into" React's state and...
Celebrating Ramadan at Ropstam

Celebrating Ramadan at Ropstam

In the lead-up to Ramadan, Ropstam Solutions hosted a special festival that served as a testament to our emphasis on work-life balance and cultural observance. Team leads and project managers came...

Why our clients
love us?

Our clients love us because we prioritize effective communication and are committed to delivering high-quality software solutions that meet the highest standards of excellence.

anton testimonial for ropstam solutions

“They met expectations with every aspect of design and development of the product, and we’ve seen an increase in downloads and monthly users.”

Anton Neugebauer, CEO, RealAdvice Agency
mike stanzyk testimonial for ropstam solutions

“Their dedication to their clients is really impressive.  Ropstam Solutions Inc. communicates effectively with the client to ensure customer satisfaction.”

Mike Stanzyk, CEO, Stanzyk LLC
Jackie Philbin

“Ropstam was an excellent partner in bringing our vision to life! They managed to strike the right balance between aesthetics and functionality, ensuring that the end product was not only visually appealing but also practical and usable.”

Jackie Philbin, Director - Nutrition for Longevity

Supercharge your software development with our expert team – get in touch today!