CVE-2024-5345

🗓️ 31 May 2024 03:15:08Reported by [email protected]Type

The Responsive Owl Carousel for Elementor plugin is vulnerable to Local File Inclusion in all versions up to 1.2.0, allowing authenticated attackers to execute arbitrary PHP code via the layout parameter

Reporter	Title	Published	Views	Family All 10
CNNVD	WordPress plugin Responsive Owl Carousel for Elementor Security Vulnerability	31 May 202400:00	–	cnnvd
CVE	CVE-2024-5345	31 May 202402:41	–	cve
Cvelist	CVE-2024-5345 Responsive Owl Carousel for Elementor <= 1.2.0 - Local File Inclusion	31 May 202402:41	–	cvelist
EUVD	EUVD-2024-46570	3 Oct 202520:07	–	euvd
Patchstack	WordPress Responsive Owl Carousel for Elementor plugin <= 1.2.0 - Local File Inclusion vulnerability	31 May 202402:32	–	patchstack
Patchstack	WordPress Responsive Owl Carousel for Elementor Plugin <= 1.2.0 is vulnerable to Local File Inclusion	31 May 202400:00	–	patchstack
RedhatCVE	CVE-2024-5345	5 Feb 202506:28	–	redhatcve
Vulnrichment	CVE-2024-5345 Responsive Owl Carousel for Elementor <= 1.2.0 - Local File Inclusion	31 May 202402:41	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 27, 2024 to June 2, 2024)	6 Jun 202415:09	–	wordfence
WPVulnDB	Responsive Owl Carousel for Elementor < 1.2.1 - Local File Inclusion	30 May 202400:00	–	wpvulndb

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/responsive-owl-carousel-elementor/trunk/includes/widgets/owl-carousel.php
plugins	www.plugins.trac.wordpress.org/changeset
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/0638c8f3-070a-4b42-ba58-396f3f259b9d

15 Apr 2026 00:35Current

8.9High risk

Vulners AI Score8.9

CVSS 3.18.8

EPSS0.00549

CWE-98