CVE-2020-26596

🗓️ 07 Oct 2020 15:32:27Reported by mitreType

cve🔗 web.nvd.nist.gov👁 453 Views🌐 WEB

Vulnerability in Elementor Pro plugin for WordPress

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2020-26596	7 Oct 202015:32	–	cvelist
NVD	CVE-2020-26596	7 Oct 202016:15	–	nvd
Patchstack	WordPress Dynamic Content for Elementor premium plugin <= 1.9.5.6 - Authenticated Remote Code Execution (RCE) vulnerability	8 Oct 202000:00	–	patchstack
Prion	Code injection	7 Oct 202016:15	–	prion
wpexploit	Dynamic Content for Elementor < 1.9.6 - Authenticated RCE	8 Oct 202000:00	–	wpexploit
WPVulnDB	Dynamic Content for Elementor < 1.9.6 - Authenticated RCE	8 Oct 202000:00	–	wpvulndb

NVD

Node

elementor elementor_proRange≤3.0.5wordpress

AND

Source	Link
elementor	www.elementor.com/pro/changelog/
ww2	www.ww2.compunet.cl/dia-cero-en-plugin-de-wordpres-detectada-compunet-redteam/

Parameter	Position	Path	Description	CWE
custom_php	request body	wp-admin/admin-ajax.php	Authenticated users with Editor role can trigger RCE via PHP Raw toggle in Dynamic Content for Elementor plugin (CVE-2020-26596).	CWE-269
actions	request body	wp-admin/admin-ajax.php	Authenticated users with Editor role can trigger RCE via PHP Raw toggle in Dynamic Content for Elementor plugin (CVE-2020-26596).	CWE-269
_nonce	request body	wp-admin/admin-ajax.php	Authenticated users with Editor role can trigger RCE via PHP Raw toggle in Dynamic Content for Elementor plugin (CVE-2020-26596).	CWE-269
editor_post_id	request body	wp-admin/admin-ajax.php	Authenticated users with Editor role can trigger RCE via PHP Raw toggle in Dynamic Content for Elementor plugin (CVE-2020-26596).	CWE-269
action	request body	wp-admin/admin-ajax.php	Authenticated users with Editor role can trigger RCE via PHP Raw toggle in Dynamic Content for Elementor plugin (CVE-2020-26596).	CWE-269

21 Nov 2024 05:20Current

8.9High risk

Vulners AI Score8.9

CVSS 3.18.8

CVSS 29

EPSS0.13663