WordPress Plugin Vulnerabilities

RTMKit Addons for Elementor < 2.0.9 - Contributor+ Private Post Title Disclosure

Description

The plugin does not perform a capability check in one of its AJAX actions and resolves a request-supplied post identifier directly, allowing users with at least the Contributor role to read the titles of other users' private, draft, pending, scheduled and trashed posts.

Proof of Concept

Affects Plugins

References

Classification

Type
IDOR
CWE
CVSS

Miscellaneous

Original Researcher
Meher Sudhakar Abbireddi
Submitter
Meher Sudhakar Abbireddi
Verified
Yes

Timeline

Publicly Published
2026-06-25 (about 21 days ago)
Added
2026-06-25 (about 20 days ago)
Last Updated
2026-06-25 (about 20 days ago)

Other