CVE-2023-32241

Name of the Vulnerable Software and Affected Versions WPDeveloper Essential Addons for Elementor Pro plugin versions <= 5.4.8

Description The issue is an Unauth. Reflected Cross-Site Scripting (XSS) vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing them to steal user data or take control of the user's session.

Recommendations For WPDeveloper Essential Addons for Elementor Pro plugin versions <= 5.4.8, update to a version higher than 5.4.8 to resolve the issue. As a temporary workaround, consider disabling any features that may be using reflected input to minimize the risk of exploitation. Restrict access to sensitive areas of the website to minimize the risk of exploitation.