.. / CVE-2022-1329

Exploit for Elementor Website Builder - Remote Code Execution (CVE-2022-1329)

Description:

The Elementor Website Builder plugin for WordPress versions 3.6.0 to 3.6.2 are vulnerable to unauthorized execution of several AJAX actions due to a missing capability check in the ~/core/app/modules/onboarding/module.php file. This makes it possible for attackers to modify site data and upload malicious files which can be used to obtain remote code execution.

Nuclei Template

View the template here CVE-2022-1329.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-1329.yaml

References:

https://wordpress.org/plugins/elementor/
https://github.com/dexit/CVE-2022-1329
https://www.wordfence.com/blog/2022/04/elementor-critical-remote-code-execution-vulnerability/
https://nvd.nist.gov/vuln/detail/CVE-2022-1329
https://plugins.trac.wordpress.org/changeset/2708766/elementor/trunk/core/app/modules/onboarding/module.php

.. / CVE-2022-1329 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Elementor Website Builder - Remote Code Execution (CVE-2022-1329)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2022-1329