Lucene search

CVE-2021-24175

🗓️ 05 Apr 2021 19:16:15Reported by [email protected]Type

The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.7 allows unauthenticated users to bypass authentication and log in as any user, as well as create accounts with arbitrary roles

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
CVE	CVE-2021-24175	5 Apr 202119:15	–	cve
Patchstack	WordPress The Plus Addons for Elementor premium plugin <= 4.1.6 - Privilege Escalation vulnerability	8 Mar 202100:00	–	patchstack
wpexploit	The Plus Addons for Elementor Page Builder < 4.1.7 - Authentication Bypass	8 Mar 202100:00	–	wpexploit
seebug.org	WordPress The Plus Addons for Elementor插件身份验证绕过漏洞（CVE-2021-24175）	10 Mar 202100:00	–	seebug
WPVulnDB	The Plus Addons for Elementor Page Builder < 4.1.7 - Authentication Bypass	8 Mar 202100:00	–	wpvulndb
Cvelist	CVE-2021-24175 The Plus Addons for Elementor Page Builder < 4.1.7 - Authentication Bypass	5 Apr 202118:27	–	cvelist
ThreatPost	Cyberattackers Exploiting Critical WordPress Plugin Bug	10 Mar 202120:25	–	threatpost
Prion	Authentication flaw	5 Apr 202119:15	–	prion
AttackerKB	CVE-2021-24175	5 Apr 202100:00	–	attackerkb

Nvd

Node

posimyth the_plus_addons_for_elementorRange<4.1.7wordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/c311feef-7041-4c21-9525-132b9bd32f89
wordfence	www.wordfence.com/blog/2021/03/critical-0-day-in-the-plus-addons-for-elementor-allows-site-takeover/
posimyth	www.posimyth.ticksy.com/ticket/2713734/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Apr 2021 19:15Current

CVSS27.5

CVSS39.8

EPSS0.62644

CWE-287