4 matches found
CVE-2024-0511
creationtimestamp| type| source ---|---|--- 2024-02-08 07:21:22+00:00| seen| https://t.me/ctinow/181195 2024-03-02 00:51:38+00:00| seen| https://t.me/ctinow/198178...
CVE-2024-0511
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.87. This is due to missing or incorrect nonce validation on the wprupdateformactionmeta function. This makes it possible for unauthenticated attacker...
CVE-2024-0511
CVE-2024-0511 — The Royal Elementor Addons and Templates WordPress plugin is vulnerable to Cross-Site Request Forgery (CSRF) in all versions up to 1.3.87 due to missing/incorrect nonce validation on the wpr_update_form_action_meta function, enabling unauthenticated attackers to post metadata via ...
CVE-2024-0511 Royal Elementor Addons and Templates <= 1.3.87 - Cross-Site Request Forgery via wpr_update_form_action_meta
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.87. This is due to missing or incorrect nonce validation on the wprupdateformactionmeta function. This makes it possible for unauthenticated attacker...