CVE Catalog

CVE-2025-63079

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Summary

The Live Copy Paste for Elementor plugin in versions 1.5.3 and below contains a vulnerability due to improper access control for contributors. This allows users with the contributor role to perform unauthorized actions.

Risk Assessment

The risk is that contributors may gain access to functions or data they should not have permissions for, potentially leading to content integrity breaches or privilege escalation.

Recommendation

It is recommended to immediately update the Live Copy Paste for Elementor plugin to a version higher than 1.5.3, which includes a fix for this vulnerability.

Original NVD description (English source)

Contributor Broken Access Control in Live Copy Paste for Elementor <= 1.5.3 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS