WordPress Plugin Vulnerabilities

The Plus Addons for Elementor Pro < 5.0.7 - Unauthenticated SQL Injection

Description

The "WP Search Filters" widget of the plugin does not sanitise and escape the option parameter before using it in a SQL statement, which could lead to SQL injection

Proof of Concept

Affects Plugins

Plugin icon
theplus_elementor_addon
Fixed in 5.0.7

References

CVE
CVE-2021-24949
URL
https://roadmap.theplusaddons.com/updates

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
6.8 (medium)

Miscellaneous

Original Researcher
Nicolas Vidal from TEHTRIS
Submitter
Nicolas Vidal from TEHTRIS
Verified
Yes
WPVDB ID
9d7f8ba8-a5d5-4ec3-a48f-5cd4b115e8d5

Timeline

Publicly Published
2021-12-13 (about 4 years ago)
Added
2021-12-13 (about 4 years ago)
Last Updated
2022-04-11 (about 3 years ago)

Other

Published
Title
Published
2022-01-24
Title
Popup Builder < 4.0.7 - Admin+ SQL Injection
Published
2025-05-19
Title
AutomatorWP < 5.2.2 - Authenticated (Administrator+) SQL Injection
Published
2024-10-13
Title
ShortPixel Image Optimizer < 5.6.4 - Authenticated (Editor+) SQL Injection
Published
2023-12-06
Title
Burst Statistics (Free < 1.5.0, Pro < 1.5.1) - Unauthenticated SQL Injection
Published
2020-10-22
Title
Advanced Booking Calendar < 1.6.2 - Unauthenticated SQL Injection