At CourseVector, our managed hosting team is always busy ensuring client websites are secure and efficient. We recently addressed a vulnerability in the Essential Addons for Elementor Pro plugin, specifically a stored cross-site scripting issue in the Lightbox & Modal widget (CVE-2024-5612). This flaw allowed users with Contributor-level access to inject malicious scripts via the ‘eael_lightbox_open_btn_icon’ parameter. By swiftly resolving such vulnerabilities, we protect our clients’ sites from potential attacks and keep them informed about our ongoing efforts to maintain and improve their online presence.