CVE-2023-3124

HIGH EXPLOITED

Elementor Pro <3.11.6 - Privilege Escalation

Title source: llm

Exploitation Summary

CVE-2023-3124 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including AmirWhiteHat.

AI-analyzed exploit summary This PoC exploits an authenticated privilege escalation vulnerability in Elementor Pro by updating WordPress site options to enable user registration and set the default role to administrator. It demonstrates the vulnerability by leveraging a missing capability check in the update_page_option function.

Description

The Elementor Pro plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the update_page_option function in versions up to, and including, 3.11.6. This makes it possible for authenticated attackers with subscriber-level capabilities to update arbitrary site options, which can lead to privilege escalation.

Exploits (1)

nomisec WORKING POC 5 stars

by AmirWhiteHat · remote-auth

https://github.com/AmirWhiteHat/CVE-2023-3124

View Code ZIP pw:eip

This PoC exploits an authenticated privilege escalation vulnerability in Elementor Pro by updating WordPress site options to enable user registration and set the default role to administrator. It demonstrates the vulnerability by leveraging a missing capability check in the update_page_option function.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Elementor Pro <= 3.11.6

Auth required

Prerequisites: Valid WordPress subscriber credentials · Elementor Pro plugin installed and activated

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://blog.nintechnet.com/high-severity-vulnerability-fixed-in-wordpress-elementor-pro-plugin/

Broken Link, Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/570474f2-c118-45e1-a237-c70b849b2d3c?source=cve

Scores

CVSS v3 8.8

EPSS 0.2272

EPSS Percentile 97.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

VulnCheck KEV 2023-06-07

CWE

CWE-862

Status published

Products (2)

elementor/elementor_pro < 3.11.7

https://elementor.com//Elementor Website Builder Pro < 3.11.6

Published Jun 07, 2023

Tracked Since Feb 18, 2026