Lucene search
K

4 matches found

Circl
Circl
added 2024/02/08 7:21 a.m.5 views

CVE-2024-0511

creationtimestamp| type| source ---|---|--- 2024-02-08 07:21:22+00:00| seen| https://t.me/ctinow/181195 2024-03-02 00:51:38+00:00| seen| https://t.me/ctinow/198178...

4.3CVSS6.2AI score0.00196EPSS
Exploits0References2
NVD
NVD
added 2024/02/08 6:15 a.m.20 views

CVE-2024-0511

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.87. This is due to missing or incorrect nonce validation on the wprupdateformactionmeta function. This makes it possible for unauthenticated attacker...

4.3CVSS4.2AI score0.00196EPSS
Exploits0References2
CVE
CVE
added 2024/02/08 5:33 a.m.51 views

CVE-2024-0511

CVE-2024-0511 — The Royal Elementor Addons and Templates WordPress plugin is vulnerable to Cross-Site Request Forgery (CSRF) in all versions up to 1.3.87 due to missing/incorrect nonce validation on the wpr_update_form_action_meta function, enabling unauthenticated attackers to post metadata via ...

4.3CVSS5.2AI score0.00196EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/02/08 5:33 a.m.25 views

CVE-2024-0511 Royal Elementor Addons and Templates <= 1.3.87 - Cross-Site Request Forgery via wpr_update_form_action_meta

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.87. This is due to missing or incorrect nonce validation on the wprupdateformactionmeta function. This makes it possible for unauthenticated attacker...

4.3CVSS4.5AI score0.00196EPSS
Exploits0References2
Rows per page
Query Builder