Lucene search
K

4 matches found

NVD
NVD
added 2023/06/17 2:15 a.m.21 views

CVE-2023-3295

The Unlimited Elements For Elementor Free Widgets, Addons, Templates for WordPress is vulnerable to arbitrary file uploads due to missing file type validation of files in the file manager functionality in versions up to, and including, 1.5.66 . This makes it possible for authenticated attackers,...

8.8CVSS8.9AI score0.01308EPSS
Exploits0References2
CVE
CVE
added 2023/06/17 1:48 a.m.54 views

CVE-2023-3295

Affected software : WordPress plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates) (versions up to and including 1.5.66). Root cause : missing file-type validation in the plugin’s file manager allows uploading arbitrary files. Impact : authenticated attackers with contributor...

8.8CVSS7.7AI score0.01308EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/17 1:48 a.m.16 views

CVE-2023-3295 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.66 - Authenticated (Contributor+) Arbitrary File Upload

The Unlimited Elements For Elementor Free Widgets, Addons, Templates for WordPress is vulnerable to arbitrary file uploads due to missing file type validation of files in the file manager functionality in versions up to, and including, 1.5.66 . This makes it possible for authenticated attackers,...

8.8CVSS7.5AI score0.01308EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/17 1:48 a.m.26 views

CVE-2023-3295 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.66 - Authenticated (Contributor+) Arbitrary File Upload

The Unlimited Elements For Elementor Free Widgets, Addons, Templates for WordPress is vulnerable to arbitrary file uploads due to missing file type validation of files in the file manager functionality in versions up to, and including, 1.5.66 . This makes it possible for authenticated attackers,...

8.8CVSS9.1AI score0.01308EPSS
Exploits0References2
Rows per page
Query Builder