What is CVE-2021-4445?

The Premium Addons for Elementor plugin for WordPress is vulnerable to Arbitrary Option Updates in versions up to, and including, 4.5.1. This is due to missing capability and nonce checks in the pa_dismiss_admin_notice AJAX action. This makes it possible for authenticated subscriber+ attackers to change arbitrary options with a restricted value of 1 on vulnerable WordPress sites.

What is the severity of CVE-2021-4445?

CVE-2021-4445 has a CVSS v3 score of 4.3, which is classified as Medium severity.

Is there an exploit available for CVE-2021-4445?

Yes, there are known exploits available for CVE-2021-4445. Immediate patching is recommended.

Is there a patch available for CVE-2021-4445?

Yes, patches are available for CVE-2021-4445. Check the vendor advisories for update instructions.

CVE-2021-4445 - CVE Details, Severity, and Analysis

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001

Vendor	Product
Leap13	Premium Addons For Elementor

CVE-2021-4445 - CVE Details, Severity, and Analysis | Strobes VI