Description
The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to Authenticated Account Takeover via Email Header Injection in all versions up to, and including, 6.6.10 This is due to insufficient server-side validation of a Login/Register widget setting used to construct outgoing email headers — the allowed-values restriction is enforced only in the client-side editor UI and not on the server, and the applied sanitization does not strip or encode CR/LF characters, allowing CRLF sequences stored in that setting to survive into raw mail headers. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject an additional Bcc header into the WordPress administrator's password-reset notification email, receive a copy of a valid administrator password-reset link, and achieve full administrator account takeover.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Sat, 11 Jul 2026 07:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Wordpress
Wordpress wordpress Wpdevteam Wpdevteam essential Addons For Elementor – Popular Elementor Templates & Widgets |
|
| Vendors & Products |
Wordpress
Wordpress wordpress Wpdevteam Wpdevteam essential Addons For Elementor – Popular Elementor Templates & Widgets |
Sat, 11 Jul 2026 06:30:00 +0000
Status: PUBLISHED
Assigner: Wordfence
Published:
Updated: 2026-07-11T05:35:49.683Z
Reserved: 2026-07-08T19:50:24.698Z
Link: CVE-2026-15155
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-11T07:30:03Z
Weaknesses
-
CWE-640
Weak Password Recovery Mechanism for Forgotten Password