NVD CRITICAL: CVE-2026-7284 — The Easy Elements for Elementor – Addons & Website Templates plugin for WordPres...

Wednesday, May 20, 2026 at 02:16 AM UTC·Source: NIST NVD

Updated: Wednesday, May 20, 2026 at 03:00 AM UTC

Executive Summary

The Easy Elements for Elementor – Addons & Website Templates plugin for WordPress is vulnerable to privilege escalation via user registration in all versions up to, and including, 1.4.4. This is due to the 'easyel_handle_register' function not restricting what user roles a user can register with. This makes it possible for unauthenticated attackers to supply the 'administrator' role during registr

Analysis

Indicators of Compromise (1)

CVE (1)

CVE-2026-7284

NVD MITRE CVE

Source Attribution

Originally published by NIST NVD on May 20, 2026. Verified by: NIST.

Related Threats

MEDIUMVulnerabilityNEW

N26 strengthens management team

N26 today announced two strategic executive appointments that will further strengthen our foundations and drive our long-term strategic goals.

Just nowFinextra

MEDIUMVulnerabilityNEW

Digital asset firm Checker raises $8 million

Checker, a global network that enables financial institutions to plug into stablecoins and digital asset liquidity, cross-border payments, treasury, and credit via a single API, announced today that it has raised $8M in funding from Galaxy Ventures, Al Mada Ventures, and Framework Ventures.

Just nowFinextra

MEDIUMVulnerabilityNEW

KfW migrates to Regnology Reporting Hub

Regnology, a leading provider at the intersection of regulatory, risk, and supervisory technology, today announced that KfW Bankengruppe (KfW) is advancing its long‑term partnership with the company by electing to migrate to the next-generation Regnology Reporting Hub (RRH).

Just nowFinextra