2 matches found
CVE-2022-4708
CVE-2022-4708 affects the WordPress plugin Royal Elementor Addons. The vulnerability is an insufficient access control in the AJAX action wpr_save_template_conditions , impacting versions up to and including 1.3.59 . This allows any authenticated user (including subscribers) to modify the conditi...
WordPress Royal Elementor Addons Plugin <= 1.3.59 is vulnerable to Broken Access Control
Software Royal Elementor Addons Type Plugin Vulnerable versions = 1.3.59 Fixed in 1.3.60 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-4708 Patch priority Medium CVSS severity Medium 4.3 Developer WProyal PSID 6e33149edb24 Credits Ramuel Gall Required...