4 matches found
CVE-2024-10316
creationtimestamp| type| source ---|---|--- 2024-11-21 11:12:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113520643174586222...
CVE-2024-10316
CVE-2024-10316 involves the Stratum – Elementor Widgets WordPress plugin. The vulnerability affects all versions up to and including 1.4.4 and resides in includes/templates/content-switcher.php, enabling authenticated attackers with Contributor+ privileges to exfiltrate sensitive template data (p...
CVE-2024-10316 Stratum – Elementor Widgets <= 1.4.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates
The Stratum – Elementor Widgets plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.4 in includes/templates/content-switcher.php. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract...
WordPress Stratum Plugin <= 1.4.4 is vulnerable to Sensitive Data Exposure
Software Stratum Type Plugin Vulnerable versions = 1.4.4 Fixed in 1.4.5 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-10316 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID eaf2b73a0382 Credits Ankit Patel Required privilege...