Lucene search
PatchstackCVELIST:CVE-2023-48759HistoryJun 19, 2024 - 10:32 a.m.
CVE-2023-48759 WordPress JetElements For Elementor plugin <= 2.6.13 - Unauthenticated Arbitrary Attachment Download vulnerability
2024-06-1910:32:09
CWE-862
Patchstack
www.cve.org
6
cve-2023-48759
wordpress
jetelements
unauthenticated
attachment download
crocoblock.
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
37.7%
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "JetElements For Elementor",
"vendor": "Crocoblock",
"versions": [
{
"changes": [
{
"at": "2.6.13.1",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.6.13",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2023-48759
2024-06-19 11:15:50
vulnrichment
vulnrichment
nvd
nvd
CVE-2023-48759
2024-06-19 11:15:50
wpvulndb
wpvulndb
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
37.7%
Related for CVELIST:CVE-2023-48759