4 matches found
VulnCheck KEV: CVE-2024-6455
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.2.0 due to a missing capability checks on ekitwidgetareacontent function. This makes it possible for unauthenticated attackers to view any item created in...
CVE-2024-6455
creationtimestamp| type| source ---|---|--- 2024-07-19 00:19:10+00:00| seen| https://t.me/cvedetector/1180...
CVE-2024-6455
CVE-2024-6455 affects ElementsKit Elementor addons for WordPress (up to version 3.2.0). Root cause: missing capability checks in the ekit_widgetarea_content function, enabling unauthenticated attackers to view Elementor items (posts, pages, templates) including drafts, pending and private items. ...
WordPress Elements kit Elementor addons Plugin <= 3.2.0 is vulnerable to Sensitive Data Exposure
Software Elements kit Elementor addons Type Plugin Vulnerable versions = 3.2.0 Fixed in 3.2.1 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6455 Patch priority Low CVSS severity Low 5.3 Developer Wpmet PSID b000113e05e5 Credits stealthcopter Required...