{"api_version":"1","generated_at":"2026-07-14T10:51:50+00:00","cve":"CVE-2022-1329","urls":{"html":"https://cve.report/CVE-2022-1329","api":"https://cve.report/api/cve/CVE-2022-1329.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2022-1329","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2022-1329"},"summary":{"title":"CVE-2022-1329","description":"The Elementor Website Builder plugin for WordPress is vulnerable to unauthorized execution of several AJAX actions due to a missing capability check in the ~/core/app/modules/onboarding/module.php file that make it possible for attackers to modify site data in addition to uploading malicious files that can be used to obtain remote code execution, in versions 3.6.0 to 3.6.2.","state":"PUBLIC","assigner":"security@wordfence.com","published_at":"2022-04-19 21:15:00","updated_at":"2023-05-26 19:42:00"},"problem_types":["CWE-434","CWE-862"],"metrics":[],"references":[{"url":"http://packetstormsecurity.com/files/168615/WordPress-Elementor-3.6.2-Shell-Upload.html","name":"http://packetstormsecurity.com/files/168615/WordPress-Elementor-3.6.2-Shell-Upload.html","refsource":"MISC","tags":[],"title":"WordPress Elementor 3.6.2 Shell Upload ≈ Packet Storm","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.pluginvulnerabilities.com/2022/04/12/5-million-install-wordpress-plugin-elementor-contains-authenticated-remote-code-execution-rce-vulnerability/","name":"https://www.pluginvulnerabilities.com/2022/04/12/5-million-install-wordpress-plugin-elementor-contains-authenticated-remote-code-execution-rce-vulnerability/","refsource":"MISC","tags":[],"title":"","mime":"inode/x-empty","httpstatus":"200","archivestatus":"200"},{"url":"https://plugins.trac.wordpress.org/changeset/2708766/elementor/trunk/core/app/modules/onboarding/module.php","name":"https://plugins.trac.wordpress.org/changeset/2708766/elementor/trunk/core/app/modules/onboarding/module.php","refsource":"MISC","tags":[],"title":"Changeset 2708766 for elementor/trunk/core/app/modules/onboarding/module.php – WordPress Plugin Repository","mime":"text/html","httpstatus":"403","archivestatus":"200"},{"url":"https://www.wordfence.com/blog/2022/04/elementor-critical-remote-code-execution-vulnerability/","name":"https://www.wordfence.com/blog/2022/04/elementor-critical-remote-code-execution-vulnerability/","refsource":"MISC","tags":[],"title":"Critical Remote Code Execution Vulnerability in Elementor","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2022-1329","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1329","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[{"source":"LEGACY","value":"Ramuel Gall, Wordfence","lang":""}],"nvd_cpes":[{"cve_year":"2022","cve_id":"1329","vulnerable":"1","versionEndIncluding":"3.6.2","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"elementor","cpe5":"elementor_website_builder","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"wordpress","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"1329","vulnerable":"1","versionEndIncluding":"3.6.2","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"elementor","cpe5":"website_builder","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"wordpress","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[{"cve":"CVE-2022-1329","qid":"730450","title":"WordPress Plugin Elementor Remote Code Execution (RCE) Vulnerability"}]},"source_records":{"cve_program":{"CVE_data_meta":{"AKA":"Wordfence","ASSIGNER":"security@wordfence.com","ID":"CVE-2022-1329","STATE":"PUBLIC","TITLE":"Elementor Website Builder 3.6.0 - 3.6.2 - Missing Authorization to Remote Code Execution"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Elementor Website Builder ","version":{"version_data":[{"version_affected":"=","version_name":"3.6.0","version_value":"3.6.0"},{"version_affected":"=","version_name":"3.6.1","version_value":"3.6.1"},{"version_affected":"=","version_name":"3.6.2","version_value":"3.6.2"}]}}]},"vendor_name":"elemntor"}]}},"credit":[{"lang":"eng","value":"Ramuel Gall, Wordfence"}],"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The Elementor Website Builder plugin for WordPress is vulnerable to unauthorized execution of several AJAX actions due to a missing capability check in the ~/core/app/modules/onboarding/module.php file that make it possible for attackers to modify site data in addition to uploading malicious files that can be used to obtain remote code execution, in versions 3.6.0 to 3.6.2."}]},"generator":{"engine":"Vulnogram 0.0.9"},"impact":{"cvss":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-862 Missing Authorization"}]},{"description":[{"lang":"eng","value":"CWE-434 Unrestricted Upload of File with Dangerous Type"}]}]},"references":{"reference_data":[{"refsource":"MISC","url":"https://www.wordfence.com/blog/2022/04/elementor-critical-remote-code-execution-vulnerability/","name":"https://www.wordfence.com/blog/2022/04/elementor-critical-remote-code-execution-vulnerability/"},{"refsource":"MISC","url":"https://plugins.trac.wordpress.org/changeset/2708766/elementor/trunk/core/app/modules/onboarding/module.php","name":"https://plugins.trac.wordpress.org/changeset/2708766/elementor/trunk/core/app/modules/onboarding/module.php"},{"refsource":"MISC","name":"https://www.pluginvulnerabilities.com/2022/04/12/5-million-install-wordpress-plugin-elementor-contains-authenticated-remote-code-execution-rce-vulnerability/","url":"https://www.pluginvulnerabilities.com/2022/04/12/5-million-install-wordpress-plugin-elementor-contains-authenticated-remote-code-execution-rce-vulnerability/"},{"refsource":"MISC","name":"http://packetstormsecurity.com/files/168615/WordPress-Elementor-3.6.2-Shell-Upload.html","url":"http://packetstormsecurity.com/files/168615/WordPress-Elementor-3.6.2-Shell-Upload.html"}]},"solution":[{"lang":"eng","value":"Update to version 3.6.3, or newer."}],"source":{"discovery":"UNKNOWN"}},"nvd":{"publishedDate":"2022-04-19 21:15:00","lastModifiedDate":"2023-05-26 19:42:00","problem_types":["CWE-434","CWE-862"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL","baseScore":6.5},"severity":"MEDIUM","exploitabilityScore":8,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:elementor:website_builder:*:*:*:*:*:wordpress:*:*","versionStartIncluding":"3.6.0","versionEndIncluding":"3.6.2","cpe_name":[]}]}]}},"legacy_mitre":{"record":null,"notes":[]}}}