Vulnerability Discovered in WordPress Elementor Plugin < 2.9.6
https://blog.nintechnet.comElementor Page Builder WordPress plugin has 4 Million+ active installations and is one of the most popular page builder that delivers high-end page designs and advanced capabilities. In versions 2.9.5 and below, there is a vulnerability that allows any authenticated to enable its Safe Mode feature allowing everyone, logged-in or not, to interact with it and to disable security plugins installed on the website such as firewall, antispam, two-factor authentication or captcha plugins for instance.
The issue has been fixed in Version 2.9.6 which is available now from the WordPress Plugin Repo.