Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:58 a.m.11 views

CVE-2024-33919

Missing Authorization vulnerability in Rometheme RomethemeKit For Elementor.This issue affects RomethemeKit For Elementor: from n/a through 1.4.1...

6.5CVSS5.1AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/03 9:56 a.m.25 views

CVE-2025-30911

Improper Control of Generation of Code 'Code Injection' vulnerability in Rometheme RTMKit rometheme-for-elementor allows Command Injection.This issue affects RTMKit: from n/a through = 1.5.4...

9.9CVSS7.4AI score0.01823EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.8 views

PT-2025-14068 · Unknown · Romethemekit For Elementor

Name of the Vulnerable Software and Affected Versions: RomethemeKit For Elementor versions n/a through 1.5.4 Description: The issue is related to an Improper Control of Generation of Code 'Code Injection' vulnerability, which allows Command Injection. This problem affects over 30,000 active sites...

9.9CVSS9.3AI score0.01823EPSS
Exploits2References14
CVE
CVE
added 2025/01/27 2:22 p.m.48 views

CVE-2025-24743

CVE-2025-24743 affects the WordPress plugin RomethemeKit For Elementor (RomethemeKit For Elementor), with versions up to 1.5.2 vulnerable due to Missing Authorization. The CVE is scored with a base CVSSv3.1 value of 4.3 (Network, Low privileges required, No user interaction; Confidentiality/Avail...

4.3CVSS7.2AI score0.0025EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/05 12:0 a.m.8 views

PT-2024-32683 · Unknown · Romethemekit For Elementor

Name of the Vulnerable Software and Affected Versions: RomethemeKit For Elementor versions 1.5.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendation...

6.5CVSS5.9AI score0.00237EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.12 views

WordPress RomethemeKit For Elementor Plugin <= 1.5.0 is vulnerable to Cross Site Scripting (XSS)

Software RomethemeKit For Elementor Type Plugin Vulnerable versions = 1.5.0 Fixed in 1.5.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47626 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 06f4df0cfc5f Credits Khalid Yusuf Required...

6.5CVSS6.5AI score0.00237EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

WordPress plugin RomethemeKit For Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS6.5AI score0.00438EPSS
Exploits0References2
Rows per page
Query Builder