Elementor Pro WP Pro v<=3.20.1 Stored XSS via SVGZ Upload on NGINX
CVE-2024-1521 Published on March 27, 2024
The Elementor Website Builder Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an SVGZ file uploaded via the Form widget in all versions up to, and including, 3.20.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. NOTE: This vulnerability is only exploitable on web servers running NGINX. It is not exploitable on web servers running Apache HTTP Server.
Timeline
Disclosed
Products Associated with CVE-2024-1521
stack.watch emails you whenever new vulnerabilities are published in Elementor Pro or Apache HTTP Server. Just hit a watch button to start following.
Affected Versions
https://elementor.com/ Elementor Website Builder Pro:- Version *, <= 3.20.1 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.