Lucene search
CVE-2022-4700
The Royal Elementor Addons plugin for WordPress has insufficient access control, allowing any authenticated user to activate the 'royal-elementor-kit' theme, impacting site availability
Show more
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2022-4700 | 10 Jan 202317:15 | – | nvd |
 | Improper access control | 10 Jan 202317:15 | – | prion |
 | WordPress Royal Elementor Addons Plugin <= 1.3.59 is vulnerable to Broken Access Control | 10 Jan 202300:00 | – | patchstack |
 | CVE-2022-4700 | 10 Jan 202317:15 | – | cve |
 | Royal Elementor Addons < 1.3.60 - Subscriber+ Arbitrary Theme Activation | 10 Jan 202300:00 | – | wpvulndb |
 | CVE-2022-4700 | 23 May 202500:33 | – | redhatcve |
 | CVE-2022-4700 | 10 Jan 202316:55 | – | vulnrichment |
 | WordPress The Royal Elementor Addons Plugin < 1.3.60 Multiple Vulnerabilities | 25 Apr 202300:00 | – | openvas |
 | WordPress Royal Elementor 1.3.59 XSS / CSRF / Insufficient Access Controls | 11 Jan 202300:00 | – | packetstorm |
 | Eleven Vulnerabilities Patched in Royal Elementor Addons | 10 Jan 202316:41 | – | wordfence |
10
[
{
"vendor": "wproyal",
"product": "Royal Elementor Addons (Elementor Templates, Post Grid, Mega Menu & Header Footer Builder, WooCommerce Builder, Product Grid, Slider, Parallax Image & other Free Elementor Widgets)",
"versions": [
{
"version": "*",
"status": "affected",
"lessThanOrEqual": "1.3.59",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo10 Jan 2023 16:55Current
8.8High risk
Vulners AI Score8.8
CVSS35.4
EPSS0.00121