CVE-2023-35050
WordPress Elementor Pro plugin <= 3.13.0 - Auth. Broken Access Control vulnerabilityMissing Authorization vulnerability in Elementor Elementor Pro.This issue affects Elementor Pro: from n/a through 3.13.0.
We have discovered 270,361 live websites that are affected by CVE-2023-35050.
Affected Software
| Product |  Elementor Pro |
| Category | Landing Page Builders |
| Vulnerable Domains | 270,361 live websites (20.15% of Elementor Pro install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 167 versions ( 68.72% of all versions) |
Common Weakness Enumeration
CWE-862 Missing AuthorizationDetails
- Published - Jun 19, 2024
- Updated - Aug 2, 2024
Credits
- Rafie Muhammad (Patchstack) (finder)
CWE
CVE References
CWE References
CVE-2023-35050 usage by Country
 United States | 87,742 websites |
 Germany | 30,838 websites |
 France | 14,750 websites |
 Brazil | 9,973 websites |
 Russia | 9,361 websites |
 Italy | 9,275 websites |
 GB | 9,190 websites |
 Cyprus | 7,660 websites |
 Spain | 7,108 websites |
 Poland | 6,293 websites |
CVE-2023-35050 usage by TLD
| .com | 107,358 websites |
| .com.br | 14,057 websites |
| .de | 13,051 websites |
| .org | 9,223 websites |
| .ru | 7,549 websites |
| .it | 7,465 websites |
| .co.uk | 6,301 websites |
| .nl | 5,273 websites |
| .pl | 5,137 websites |
| .net | 5,096 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2023-35050
Top websites that are affected by CVE-2023-35050. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| **************.de | Germany | *** | |
| ******.com | United States | *,*** | |
| **********.com | United States | *,*** | |
| ***********************.com | United States | *,*** | |
| ******************.org | United States | *,*** | |
| *******.com | United States | *,*** | |
| *********.com | United States | *,*** | |
| **********.com | United States | *,*** | |
| ***************.org | United States | *,*** | |
| **********************.de | United States | **,*** |
FAQ
CVE-2023-35050 is Missing Authorization in Elementor Pro
A total of 270,361 websites have been identified as vulnerable to CVE-2023-35050, based on global website indexing conducted by WebTechSurvey.
The Elementor Pro is affected by the CVE-2023-35050 vulnerability.
Elementor Pro versions up to and including 3.13 are vulnerable to CVE-2023-35050.