Your wordpress website is prone to cyber attack if you have not updated your essential addons for elementor. Essential addons is a wordpress plugin that helps in extending elementor functionalities.

What Is Essential Eddons For Elementor?

This a wordpress plugin that was developed by WPDeveloper to extend the functionalities of the elementor page builder.

With this software installed in your website, you will have additional elementor widgets added to your widgets list.

Essential addons for elementor is equipped with over 40 free elementor elements and over one million active installations.

According to Bleepingcomputer, it was discovered that the version 5.0.4 and older versions have a remote code execution (RCE) vulnerability.

This loopholes will allow an attacker to launch a local file inclusion attack like PHP file by executing code on the site.

As at January 31, 2022, about 600 thousand wordpress websites have not updated their essential addons for elementor. Make sure you download the latest version by visiting wordpress.org.

Factors That Will Enhance The Attack

The factors that can lead to your wordpress website attacks, while using essential addons for elementor.

This plugin adds additional widgets to your list of widgets.

If you are familiar with the elementor page builder widgets, you will discover that once this addon is installed it comes with more widgets including dynamic gallery and Products gallery.

This vulnerability is mostly for the eCommerce web stores, this two widgets are the only lead way for the attackers.

The widgets are ‘Dynamic gallery’ and ‘Products gallery’ . You will agree with me that 90% of websites that are using products gallery are eCommerce stores.

If you are running an eCommerce website and you haven’t updated your essential addons for elementor to the latest version, it means that your website is at risk of cyber attacks.

How To Keep Your WordPress Site Safe

If you are running an eCommerce website on wordpress, it’s very important to know that wordpress is an open-source software and you are to take security serious. Check out our article on wordpress security checklist.

You must have a well thought out strategies for protecting your wordpress website. Most of the plugins like essential addons for elementor that helps in extending functionalities are vulnerable to attacks.

Some of these plugins are poorly developed. As human beings are bound to make mistakes, the possibilities of creating loopholes are there

Some Of The Things You Should Not Ignore

Use a strong web hosting like Bluehost or Hostinger

Always update your wordpress

Update your plugins

Update your theme

Avoid nulled themes and plugins

Install a security plugin like iTheme Security

Make sure you have your website backup in case of an attack.

Conclusion

Checking your website on a regular basis should be your priority, this would help you to know when plugins need to be updated.

For those that are running big website with a lot of activities. Having a dedicated security expert whose duty would be to make sure that all the security matters are been addressed would be a nice approach.

For those that are using essential addons for elementor on their website. Make sure you have the latest version installed and if you are no longer using it, delete it to have a safe website.

From makawp dot com
Check my signature below �