Lucene search
HistoryMay 17, 2024 - 10:15 a.m.
CVE-2024-32786
cve-2024-32786
vulnerability
authentication bypass
spoofing
wp royal
elementor addons
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Authentication Bypass by Spoofing vulnerability in WP Royal Royal Elementor Addons allows Functionality Bypass.This issue affects Royal Elementor Addons: from n/a through 1.3.93.
Affected configurations
Node
wp_royalroyal_elementor_addonsRange≤1.3.93
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "royal-elementor-addons",
"product": "Royal Elementor Addons",
"vendor": "WP Royal",
"versions": [
{
"changes": [
{
"at": "1.3.95",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.3.93",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-32786
2024-05-17 10:15:10
vulnrichment
vulnrichment
wpexploit
wpexploit
Royal Elementor Addons < 1.3.95 - Unauthenticated IP Spoofing
2024-05-03 00:00:00
wpvulndb
wpvulndb
Royal Elementor Addons < 1.3.95 - Unauthenticated IP Spoofing
2024-05-03 00:00:00
cvelist
cvelist
wordfence
wordfence
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-32786