Product

Piotnet Addons for Elementor Pro <= 7.1.70

1 brief RSS

CVE-2026-4885: Piotnet Addons for Elementor Pro WordPress Plugin Arbitrary File Upload Vulnerability

The Piotnet Addons for Elementor Pro plugin for WordPress, versions up to 7.1.70, is vulnerable to unauthenticated arbitrary file upload due to insufficient file type validation in the 'pafe_ajax_form_builder' function, potentially leading to remote code execution.

Piotnet Addons for Elementor Pro <= 7.1.70 arbitrary-file-upload rce wordpress plugin

2r 1t 1c 1d ago