Description
WordPress Plugin Startklar Elementor Addons is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Startklar Elementor Addons version 1.7.15 is vulnerable; prior versions may also be affected.
Remediation
Disable and remove the plugin until a fix is available
References
Related Vulnerabilities
WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Cross-Site Scripting (1.3.3)
Joomla! Core 3.9.x Cross-Site Scripting (3.9.0 - 3.9.20)
Oracle Database Server CVE-2019-2776 Vulnerability (CVE-2019-2776)
OpenSSL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2018-5407)