A critical vulnerability addressed in the Elementor WordPress plugin could allow authenticated users to upload arbitrary files to affected websites, potentially leading to code execution.
Elementor is a drag-and-drop website builder for WordPress that has more than 5 million installations.
