CVE-2022-4705

🗓️ 10 Jan 2023 17:11:15Reported by [email protected]Type

The Royal Elementor Addons plugin for WordPress has insufficient access control, allowing any authenticated user to finalize activation of site configuration templates

Reporter	Title	Published	Views	Family All 16
Cvelist	CVE-2022-4705	10 Jan 202316:55	–	cvelist
Cvelist	CVE-2022-4704	10 Jan 202316:55	–	cvelist
CVE	CVE-2022-4705	10 Jan 202317:15	–	cve
CVE	CVE-2022-4704	10 Jan 202317:15	–	cve
Prion	Improper access control	10 Jan 202317:15	–	prion
Prion	Improper access control	10 Jan 202317:15	–	prion
Vulnrichment	CVE-2022-4705	10 Jan 202316:55	–	vulnrichment
Vulnrichment	CVE-2022-4704	10 Jan 202316:55	–	vulnrichment
Patchstack	WordPress Royal Elementor Addons Plugin <= 1.3.59 is vulnerable to Broken Access Control	10 Jan 202300:00	–	patchstack
Patchstack	WordPress Royal Elementor Addons Plugin <= 1.3.59 is vulnerable to Broken Access Control	10 Jan 202300:00	–	patchstack

Nvd

Node

royal-elementor-addons royal_elementor_addonsRange≤1.3.59wordpress

Source	Link
wordfence	www.wordfence.com/blog/2023/01/eleven-vulnerabilities-patched-in-royal-elementor-addons/
plugins	www.plugins.trac.wordpress.org/browser/royal-elementor-addons/trunk/admin/templates-kit.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/0a941aef-85f6-4719-b6ab-ace77a03e93e

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jan 2023 17:15Current

5Medium risk

Vulners AI Score5

CVSS34.3

EPSS0.00092