4 matches found
Exploit for Missing Authorization in Crowdytheme Arolax
🔓 Exploit Script for CVE-2025-1639 📝 Description The Anim...
CVE-2025-1639
creationtimestamp| type| source ---|---|--- 2025-03-04 05:01:11+00:00| published-proof-of-concept| Telegram/vguQSoDtfnSSMMh6g3qPKY0JcDG6idXQojUpnqu8LsOOPP8 2025-03-04 05:48:44+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114102588102913759 2025-03-04 07:04:09+00:00| seen|...
CVE-2025-1639 Animation Addons for Elementor Pro <= 1.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation
The Animation Addons for Elementor Pro plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the installelementorpluginhandler function in all versions up to, and including, 1.6. This makes it possible for authenticated attackers, wi...
CVE-2025-1639 Animation Addons for Elementor Pro <= 1.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation
The Animation Addons for Elementor Pro plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the installelementorpluginhandler function in all versions up to, and including, 1.6. This makes it possible for authenticated attackers, wi...