CVE-2024-8742
📋 TL;DR
This vulnerability allows authenticated WordPress users with contributor-level access or higher to inject malicious scripts into pages using the Filterable Gallery widget. The scripts are stored and execute whenever other users view the compromised pages, potentially stealing credentials or performing unauthorized actions. All WordPress sites using Essential Addons for Elementor plugin versions up to 6.0.3 are affected.
💻 Affected Systems
- Essential Addons for Elementor WordPress plugin
📦 What is this software?
⚠️ Risk & Real-World Impact
Worst Case
Attackers could steal administrator credentials, take over the WordPress site, deface pages, or redirect users to malicious sites, potentially leading to complete site compromise and data theft.
Likely Case
Attackers inject malicious scripts to steal user session cookies, perform actions as other users, or display unwanted content on affected pages.
If Mitigated
With proper user role management and content review processes, the impact is limited to potential defacement of specific pages rather than site-wide compromise.
🎯 Exploit Status
Exploitation requires authenticated access but is straightforward once an attacker has contributor privileges. The vulnerability details and patch are publicly available.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 6.0.4 and later
Vendor Advisory: https://wordpress.org/plugins/essential-addons-for-elementor-lite/#developers
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find 'Essential Addons for Elementor'. 4. Click 'Update Now' if available, or download version 6.0.4+ from WordPress repository. 5. Activate the updated plugin.
🔧 Temporary Workarounds
Disable Filterable Gallery Widget
allTemporarily disable the vulnerable widget until patching is complete
Navigate to Elementor → Essential Addons → Elements → Disable 'Filterable Gallery'
Restrict User Roles
allTemporarily remove contributor-level editing permissions from untrusted users
Navigate to Users → All Users → Edit user roles to remove 'contributor' or higher privileges
🧯 If You Can't Patch
- Implement strict content review process for all posts/pages created by contributors
- Install and configure a Web Application Firewall (WAF) with XSS protection rules
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel → Plugins → Essential Addons for Elementor → Version number. If version is 6.0.3 or lower, you are vulnerable.Check Version:
wp plugin list --name='essential-addons-for-elementor' --field=versionVerify Fix Applied:
After updating, verify version is 6.0.4 or higher in WordPress plugins page. Test Filterable Gallery widget functionality to ensure it still works properly.📡 Detection & Monitoring
Log Indicators:
- Unusual POST requests to wp-admin/post.php with gallery-related parameters
- Multiple page edits by contributor-level users in short timeframes
Network Indicators:
- Script tags with unusual attributes in page responses
- External JavaScript loading from unexpected domains in gallery pages
SIEM Query:
source="wordpress.log" AND ("filterable_gallery" OR "eael_filterable_gallery") AND (POST OR PUT)🔗 References
- https://plugins.trac.wordpress.org/browser/essential-addons-for-elementor-lite/tags/6.0.3/includes/Elements/Filterable_Gallery.php#L566
- https://plugins.trac.wordpress.org/changeset/3148624/
- https://wordpress.org/plugins/essential-addons-for-elementor-lite/#developers
- https://www.wordfence.com/threat-intel/vulnerabilities/id/76c292dc-e9da-4256-82df-58ac5def4771?source=cve
