Lucene search
PatchstackCVE-2024-38730HistoryJul 22, 2024 - 11:15 a.m.
CVE-2024-38730
2024-07-2211:15:04
CWE-918
Patchstack
web.nvd.nist.gov
30
cve-2024-38730
server-side request forgery
noor alam magical addons
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
AI Score
5.2
Confidence
High
EPSS
0
Percentile
14.6%
Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This issue affects Magical Addons For Elementor: from n/a through 1.1.41.
Affected configurations
Node
wpthemespacemagical_addons_for_elementorRange<1.1.42wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wpthemespace | magical_addons_for_elementor | * | cpe:2.3:a:wpthemespace:magical_addons_for_elementor:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "magical-addons-for-elementor",
"product": "Magical Addons For Elementor",
"vendor": "Noor alam",
"versions": [
{
"changes": [
{
"at": "1.1.42",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.1.41",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-38730
2024-07-22 11:15:04
cvelist
cvelist
wordfence
wordfence
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
AI Score
5.2
Confidence
High
EPSS
0
Percentile
14.6%
Related for CVE-2024-38730