Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
WPDeveloper Essential Addons for Elementor allows unauthorized access to sensitive settings
CVE-2026-23543
Summary
A security flaw in WPDeveloper's Essential Addons for Elementor plugin allows attackers to access sensitive settings if access control is not properly configured. This issue affects older versions of the plugin (up to 6.5.5), so it's essential to update to the latest version to prevent unauthorized access. Update the plugin as soon as possible to ensure your website's security.
Original title
Missing Authorization vulnerability in WPDeveloper Essential Addons for Elementor essential-addons-for-elementor-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This is...
Original description
Missing Authorization vulnerability in WPDeveloper Essential Addons for Elementor essential-addons-for-elementor-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Addons for Elementor: from n/a through <= 6.5.5.
nvd CVSS3.1
5.3
Vulnerability type
CWE-862
Missing Authorization
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026