Lucene search
WPScanCVELIST:CVE-2023-5360HistoryOct 31, 2023 - 1:54 p.m.
CVE-2023-5360 Royal Elementor Addons and Templates < 1.3.79 - Unauthenticated Arbitrary File Upload
2023-10-3113:54:42
WPScan
www.cve.org
3
wordpress
plugin
vulnerability
file upload
rce
unauthenticated users
cve-2023-5360
The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE.
CNA Affected
[
{
"vendor": "Unknown",
"product": "Royal Elementor Addons and Templates",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "1.3.79"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
cve
cve
CVE-2023-5360
2023-10-31 14:15:12
attackerkb
attackerkb
CVE-2023-5360
2023-10-31 00:00:00
wpvulndb
wpvulndb
metasploit
metasploit
WordPress Royal Elementor Addons RCE
2023-11-23 04:15:28
zdt
zdt
WordPress Royal Elementor Addons Remote Code Execution Exploit
2023-11-28 00:00:00
WordPress Royal Elementor 1.3.78 Shell Upload Vulnerability
2023-10-16 00:00:00
wordfence
wordfence
prion
prion
Default credentials
2023-10-31 14:15:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-12-01 18:27:19
nvd
nvd
CVE-2023-5360
2023-10-31 14:15:12
githubexploit
githubexploit
packetstorm
packetstorm
WordPress Royal Elementor Addons And Templates Remote Shell Upload
2023-11-29 00:00:00
WordPress Royal Elementor 1.3.78 Shell Upload
2023-10-16 00:00:00
nuclei
nuclei
WordPress Royal Elementor Addons Plugin <= 1.3.78 - Arbitrary File Upload
2023-10-17 09:00:45
wpexploit
wpexploit