WordPress Royal Elementor Kit plugin <= 1.0.116 - Missing Authorization to Arbitrary Transient Update vulnerability

Missing Authorization to Arbitrary Transient Update vulnerability discovered by Sean Murphy in WordPress Theme Royal Elementor Kit versions = 1.0.116...

EUVD-2024-30559

Malicious code in bioql PyPI...

CVE-2024-32773

Cross-Site Request Forgery CSRF vulnerability in WP Royal Royal Elementor Kit.This issue affects Royal Elementor Kit: from n/a through 1.0.116...

CVE-2024-32773

CVE-2024-32773 is a CSRF vulnerability affecting the Royal Elementor Kit for WordPress, with the vulnerability report stating impact as Cross‑Site Request Forgery and affected versions up to 1.0.116. The available connected documents confirm the product (Royal Elementor Kit) and the vulnerability...

WordPress plugin Royal Elementor Kit 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

PT-2024-15854 · WordPress · The Royal Elementor Kit

Name of the Vulnerable Software and Affected Versions: The Royal Elementor Kit theme for WordPress versions up to, and including, 1.0.116 Description: The issue arises from a missing capability check on the dismissed handler function, allowing authenticated attackers with subscriber access or...