Elementor Website Builder – More than Just a Page Builder, CVE-2020-8426

CVE, Research URL: CVE-2020-8426
Home page URL: Security reports for Elementor Website Builder – More than Just a Page Builder
Application: Elementor Website Builder – More than Just a Page Builder
Published on: Jan 29, 2020
Research Description: The Elementor plugin before 2.8.5 for WordPress suffers from a reflected XSS vulnerability on the elementor-system-info page. These can be exploited by targeting an authenticated user.
Affected versions: max 2.8.5.
Status: vulnerable