WordPress Plugin Vulnerabilities

Jeg Elementor Kit < 2.5.7 - Subscriber+ Authorization Bypass

Description

The plugin does not properly authorize requests to various ajax actions, allowing authenticated users (with roles as low as subscriber) to create header templates and make additional changes to the site using an easily available nonce value.

Affects Plugins

Plugin icon
jeg-elementor-kit
Fixed in 2.5.7

References

CVE
CVE-2022-3794

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
5.4 (medium)

Miscellaneous

Original Researcher
Ramuel Gall
Verified
No
WPVDB ID
9cfd2d4a-d144-4203-b5f6-196e2dcdbca5

Timeline

Publicly Published
2022-11-04 (about 3 years ago)
Added
2022-12-23 (about 3 years ago)
Last Updated
2022-12-23 (about 3 years ago)

Other

Published
Title
Published
2025-11-04
Title
KiotViet Sync <= 1.8.5 - Authorization Bypass via Use of Hard-coded Password
Published
2020-01-14
Title
Backup and Staging by WP Time Capsule < 1.21.16 - Authentication Bypass
Published
2025-08-22
Title
Case Theme User < 1.0.4 - Authentication Bypass via Social Login
Published
2025-04-07
Title
Admin and Site Enhancements (ASE) < 7.6.10 - Password Protection Bypass
Published
2024-07-10
Title
profile-builder < 3.11.9 - Unauthenticated Privilege Escalation