Lucene search
CVE-2022-4705
The Royal Elementor Addons plugin for WordPress has insufficient access control in the 'wpr_final_settings_setup' AJAX action, allowing any authenticated user to finalize activation of preset site configuration templates
Show more
| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
 | Improper access control | 10 Jan 202317:15 | – | prion |
| Improper access control | 10 Jan 202317:15 | – | prion |
 | CVE-2022-4705 | 10 Jan 202317:15 | – | nvd |
| CVE-2022-4704 | 10 Jan 202317:15 | – | nvd |
 | CVE-2022-4705 | 10 Jan 202316:55 | – | vulnrichment |
| CVE-2022-4704 | 10 Jan 202316:55 | – | vulnrichment |
 | CVE-2022-4705 | 10 Jan 202317:15 | – | cve |
| CVE-2022-4704 | 10 Jan 202317:15 | – | cve |
 | WordPress Royal Elementor Addons Plugin <= 1.3.59 is vulnerable to Broken Access Control | 10 Jan 202300:00 | – | patchstack |
| WordPress Royal Elementor Addons Plugin <= 1.3.59 is vulnerable to Broken Access Control | 10 Jan 202300:00 | – | patchstack |
10
[
{
"vendor": "wproyal",
"product": "Royal Elementor Addons (Elementor Templates, Post Grid, Mega Menu & Header Footer Builder, WooCommerce Builder, Product Grid, Slider, Parallax Image & other Free Elementor Widgets)",
"versions": [
{
"version": "*",
"status": "affected",
"lessThanOrEqual": "1.3.59",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo10 Jan 2023 16:55Current
6.1Medium risk
Vulners AI Score6.1
CVSS34.3
EPSS0.0008