RedefiningTheWeb PDF Generator Addon for Elementor Path Traversal Vulnerability

A directory traversal vulnerability has been identified in the PDF Generator Addon for Elementor Page Builder, affecting versions through 1.7.5. This vulnerability allows unauthorized access to files outside the intended directory, potentially leading to arbitrary file read.

Impact

Exploitation of this vulnerability could allow a malicious actor to read arbitrary files on the server, which could be used to exploit other vulnerabilities or access sensitive information.

Remediation

Users of the PDF Generator Addon for Elementor Page Builder should update to version 2.0.1 or later to address this vulnerability. Patchstack users can enable auto-updates for vulnerable plugins.