PT-2026-6257 · WordPress · Elementinvader Addons For Elementor
Legion Hunter
·
Published
2026-02-03
·
Updated
2026-02-03
·
CVE-2026-25028
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
ElementInvader Addons for Elementor versions through 1.4.1
Description
An issue exists in ElementInvader Addons for Elementor where incorrectly configured access control security levels can be exploited, leading to a missing authorization condition. The vulnerability allows unauthorized access.
Recommendations
Update ElementInvader Addons for Elementor to a version later than 1.4.1.
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Elementinvader Addons For Elementor