Lucene search

CVE-2022-3805

🗓️ 22 Dec 2022 21:10:15Reported by WordfenceType

The Jeg Elementor Kit plugin for WordPress is vulnerable to authorization bypass. Unauthenticated users can update plugin settings

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
RedhatCVE	CVE-2022-3805	6 Feb 202500:47	–	redhatcve
Prion	Authorization	22 Dec 202221:15	–	prion
Vulnrichment	CVE-2022-3805	22 Dec 202220:26	–	vulnrichment
NVD	CVE-2022-3805	22 Dec 202221:15	–	nvd
Cvelist	CVE-2022-3805	22 Dec 202220:26	–	cvelist
Patchstack	WordPress Jeg Elementor Kit Plugin < 2.5.7 is vulnerable to Broken Access Control	3 Jan 202300:00	–	patchstack
WPVulnDB	Jeg Elementor Kit < 2.5.7 - Unauthenticated Settings Update	4 Nov 202200:00	–	wpvulndb

Nvd

Vulners

Node

jegtheme jeg_elementor_kitRange<2.5.7wordpress

[
  {
    "vendor": "jegtheme",
    "product": "Jeg Elementor Kit",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "2.5.6",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/c9955d65-afb3-4d28-abd2-9f2fec92d013
wordpress	www.wordpress.org/plugins/jeg-elementor-kit/
plugins	www.plugins.trac.wordpress.org/changeset

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Dec 2022 21:15Current

7.5High risk

Vulners AI Score7.5

CVSS37.5 - 8.6

EPSS0.00224

SSVC