18 matches found
Exploit for Unrestricted Upload of File with Dangerous Type in Royal-Elementor-Addons Royal_Elementor_Addons
Royal Elementor Addons ≤ 1.3.78 – Unauthenticated Arbitrary Fi...
Exploit for Unrestricted Upload of File with Dangerous Type in Royal-Elementor-Addons Royal_Elementor_Addons
CVE-2023-5360 Elementor File Upload Exploit The Royal Element...
CVE-2023-5360
The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE...
📄 WordPress Royal Elementor Addons 1.3.78 Shell Upload
WordPress Royal Elementor Addons plugin versions 1.3.78 and below suffer from a remote shell upload vulnerability. Exploit Title: WordPress Plugin Royal Elementor Addons = 1.3.78 - Unauthenticated Arbitrary File Upload RCE Date: 2025-04-04 Exploit Author: Sheikh Mohammad Hasan...
Royal Elementor Addons and Templates 1.3.78 - Unauthenticated Arbitrary File Upload
Exploit Title: WordPress Plugin Royal Elementor Addons = 1.3.78 - Unauthenticated Arbitrary File Upload RCE Date: 2025-04-04 Exploit Author: Sheikh Mohammad Hasan https://github.com/4m3rr0r Vendor Homepage: https://royal-elementor-addons.com Software Link:...
WordPress Royal Elementor Addons And Templates Remote Shell Upload
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Royal Elementor Addons RCE', 'Description' = %q Exploit for the unauthenticated file upload vulnerability in WordPress Royal Elementor...
WordPress Royal Elementor Addons RCE
Exploit for the unauthenticated file upload vulnerability in WordPress Royal Elementor Addons and Templates plugin use exploit/multi/http/wproyalelementoraddonsrce msf exploitwproyalelementoraddonsrce show targets ...targets... msf exploitwproyalelementoraddonsrce set TARGET msf...
WordPress Royal Elementor Addons Remote Code Execution Exploit
Exploit for the unauthenticated file upload vulnerability in WordPress Royal Elementor Addons and Templates plugin 'WordPress Royal Elementor Addons RCE', 'Description' = %q Exploit for the unauthenticated file upload vulnerability in WordPress Royal Elementor Addons and Templates plugin...
Exploit for Unrestricted Upload of File with Dangerous Type in Royal-Elementor-Addons Royal_Elementor_Addons
CVE-2023-5360 An Open-source EXPLOIT for The Royal Elementor...
Exploit for Unrestricted Upload of File with Dangerous Type in Royal-Elementor-Addons Royal_Elementor_Addons
🚀 WordPress Royal Elementor Addons and Templates Exploit Expl...
CVE-2023-5360
The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE...
CVE-2023-5360 Royal Elementor Addons and Templates < 1.3.79 - Unauthenticated Arbitrary File Upload
The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE...
CVE-2023-5360
CVE-2023-5360 affects the WordPress plugin Royal Elementor Addons and Templates, specifically versions before 1.3.79. The vulnerability is an unauthenticated arbitrary file upload flaw in the upload handling (AJAX endpoint at /wp-admin/admin-ajax.php) that allows an attacker to upload files (e.g....
CVE-2023-5360
creationtimestamp| type| source ---|---|--- 2023-10-17 14:29:19+00:00| exploited| https://t.me/quanxiaowa/596 2023-10-18 13:37:08+00:00| seen| https://t.me/apsecurity/197 2023-10-18 13:37:08+00:00| seen| https://t.me/apsecurity/139 2023-10-21 10:55:43+00:00| published-proof-of-concept|...
WordPress Royal Elementor 1.3.78 Shell Upload
Today, on October 13, 2023, the Wordfence Threat Intelligence Team became aware of a vulnerability that was recently patched in Royal Elementor Addons and Templates, a WordPress plugin installed on over 200,000 sites, that makes it possible for unauthenticated attackers to upload arbitrary files ...
WordPress Royal Elementor 1.3.78 Shell Upload Vulnerability
Today, on October 16, 2023, the Wordfence Threat Intelligence Team became aware of a vulnerability that was recently patched in Royal Elementor Addons and Templates, a WordPress plugin installed on over 200,000 sites, that makes it possible for unauthenticated attackers to upload arbitrary files ...
WordPress Royal Elementor Addons Plugin <= 1.3.78 is vulnerable to Arbitrary File Upload
Software Royal Elementor Addons Type Plugin Vulnerable versions = 1.3.78 Fixed in 1.3.79 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2023-5360 Patch priority High CVSS severity High 10 Developer WProyal PSID 367ca965d960 Credits Fioravante Souza Required privilege...
PSA: Critical Unauthenticated Arbitrary File Upload Vulnerability in Royal Elementor Addons and Templates Being Actively Exploited
Update: Wordfence has released a malware detection signature for wp.ph$p to Wordfence Premium, Wordfence Care, Wordfence Response, and the paid tiers of Wordfence CLI as of Monday, October 16, 2023. Today, on October 13, 2023, the Wordfence Threat Intelligence Team became aware of a vulnerability...