Description
WordPress Plugin The Plus Addons for Elementor is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently send arbitrary reset password emails to registered users on behalf of the WordPress site. WordPress Plugin The Plus Addons for Elementor version 4.1.10 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.1.11 or latest