Critical severity9.8NVD Advisory· Published Feb 1, 2022· Updated Jun 17, 2026
CVE-2022-0320
CVE-2022-0320
Description
The Essential Addons for Elementor WordPress plugin before 5.0.5 does not validate and sanitise some template data before it them in include statements, which could allow unauthenticated attackers to perform Local File Inclusion attack and read arbitrary files on the server, this could also lead to RCE via user uploaded files or other LFI to RCE techniques.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <5.0.5
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/0d02b222-e672-4ac0-a1d4-d34e1ecf4a95nvdThird Party Advisory
News mentions
0No linked articles in our index yet.