Description
WordPress Plugin Elements For Elementor is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Elements For Elementor version 2.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.2 or latest
References
Related Vulnerabilities
Joomla! Core 3.4.x Cross-Site Scripting (3.4.0 - 3.4.3)
Drupal Core 9.0.x Cross-Site Scripting (9.0.0 - 9.0.11)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-9585)
Grafana Improper Verification of Cryptographic Signature Vulnerability (CVE-2022-31123)
WordPress Plugin Product Subtitle For WooCommerce Arbitrary File Disclosure (4.1)