WordPress Plugin Vulnerabilities

The Plus Addons for Elementor Pro < 5.0.7 - Sensitive Data Disclosure

Description

The plugin does not validate the qvquery parameter of the tp_get_dl_post_info_ajax AJAX action, which could allow unauthenticated users to retrieve sensitive information, such as private and draft posts

Proof of Concept

Affects Plugins

Plugin icon
theplus_elementor_addon
Fixed in 5.0.7

References

CVE
CVE-2021-24948
URL
https://roadmap.theplusaddons.com/updates

Classification

Type
SENSITIVE DATA DISCLOSURE
OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
Nicolas Vidal from TEHTRIS
Submitter
Nicolas Vidal from TEHTRIS
Verified
Yes
WPVDB ID
2b67005a-476e-4772-b15c-3191911a50b0

Timeline

Publicly Published
2021-12-13 (about 4 years ago)
Added
2021-12-13 (about 4 years ago)
Last Updated
2022-04-11 (about 3 years ago)

Other

Published
Title
Published
2022-04-15
Title
Simple Ajax Chat < 20220216 - Sensitive Information Disclosure
Published
2025-04-04
Title
KB Support – Customer Support Ticket & Helpdesk Plugin, Knowledge Base Plugin <= 1.7.4 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory
Published
2025-12-12
Title
Brizy – Page Builder < 2.7.17 - Contributor+ Sensitive Information Exposure
Published
2025-12-12
Title
Ultimate Auction <= 4.3.2 - Unauthenticated Information Exposure
Published
2025-11-10
Title
Crypto Tool <= 2.22 - Unauthenticated Information Exposure via Global Authentication State