3 matches found
CVE-2022-4700
creationtimestamp| type| source ---|---|--- 2023-01-10 20:28:49+00:00| seen| https://t.me/cibsecurity/56250 2023-12-11 02:48:51+00:00| seen| https://t.me/arpsyndicate/1691...
CVE-2022-4700
The CVE-2022-4700 entry concerns the WordPress plugin Royal Elementor Addons. Affected versions are up to and including 1.3.59, where an insufficient access-control flaw in the wpr_activate_required_theme AJAX action allows any authenticated user (including subscribers) to activate the royal-elem...
WordPress Royal Elementor Addons Plugin <= 1.3.59 is vulnerable to Broken Access Control
Software Royal Elementor Addons Type Plugin Vulnerable versions = 1.3.59 Fixed in 1.3.60 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-4700 Patch priority Medium CVSS severity Medium 5.4 Developer WProyal PSID 423004fa0a2f Credits Ramuel Gall Required...