CVE-2026-1793
Arbitrary File Read in Element Pack Addons for Elementor
Publication date: 2026-02-15
Last updated on: 2026-02-15
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| bdthemes | element-pack-lite | to 8.3.17 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The Element Pack Addons for Elementor plugin for WordPress has a vulnerability in all versions up to and including 8.3.17. This vulnerability exists in the SVG widget due to insufficient file validation in the 'render_svg' function.
Because of this flaw, authenticated attackers with contributor-level access or higher can exploit the vulnerability to read arbitrary files on the server. These files may contain sensitive information.
How can this vulnerability impact me? :
This vulnerability allows attackers who have contributor-level or higher access to read any file on the server where the plugin is installed.
The impact is significant because attackers can access sensitive information stored in arbitrary files, potentially leading to data exposure or leakage.
The CVSS v3.1 base score of 6.5 reflects a medium severity with high confidentiality impact but no impact on integrity or availability.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability involves arbitrary file reads via the SVG widget in the Element Pack Addons for Elementor plugin for WordPress, specifically through the 'render_svg' function. Detection would involve identifying attempts by authenticated users with contributor-level access or higher to exploit this function.
Since the vulnerability allows reading arbitrary files on the server, monitoring web server logs for unusual requests targeting SVG widget endpoints or suspicious parameters related to SVG rendering could help detect exploitation attempts.
Specific commands or tools are not provided in the available resources. However, general detection methods could include:
- Reviewing WordPress access logs for POST or GET requests to URLs related to the Element Pack SVG widget.
- Using grep or similar tools to search logs for suspicious file path parameters or attempts to access sensitive files.
- Monitoring for authenticated user activity with contributor-level or higher roles performing unusual SVG-related actions.
No explicit commands or detection scripts are mentioned in the provided resources.
What immediate steps should I take to mitigate this vulnerability?
The vulnerability affects all versions of the Element Pack Addons for Elementor plugin up to and including version 8.3.17.
The immediate mitigation step is to update the plugin to version 8.3.18 or later, where presumably the vulnerability has been addressed.
Additional general mitigation steps include:
- Restrict contributor-level and higher access to trusted users only.
- Monitor and audit user activities related to SVG widget usage.
- Implement web application firewall (WAF) rules to detect and block suspicious requests targeting SVG rendering endpoints.
No explicit mitigation commands or configuration changes are detailed in the provided resources.