CVE-2023-47178

Name of the Vulnerable Software and Affected Versions The Plus Addons for Elementor Pro versions n/a through 5.2.8

Description The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability, which allows PHP Local File Inclusion. This vulnerability affects The Plus Addons for Elementor Pro, allowing potential access to sensitive files.

Recommendations For versions n/a through 5.2.8, update to a version later than 5.2.8 to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.