4 matches found
CVE-2024-11034
The The Request a Quote for WooCommerce and Elementor – Get a Quote Button – Product Enquiry Form Popup – Product Quotation plugin for WordPress is vulnerable to arbitrary shortcode execution via firecontactform AJAX action in all versions up to, and including, 1.4. This is due to the software...
CVE-2024-11034
creationtimestamp| type| source ---|---|--- 2024-11-23 11:27:45+00:00| seen| https://infosec.exchange/users/cve/statuses/113532027828976073 2024-11-24 01:04:33+00:00| seen| https://infosec.exchange/users/vuldb/statuses/113535239658678358...
CVE-2024-11034 Request a Quote for WooCommerce and Elementor – Get a Quote Button – Product Enquiry Form Popup – Product Quotation <= 1.4 - Unauthenticated Arbitrary Shortcode Execution via fire_contact_form
The The Request a Quote for WooCommerce and Elementor – Get a Quote Button – Product Enquiry Form Popup – Product Quotation plugin for WordPress is vulnerable to arbitrary shortcode execution via firecontactform AJAX action in all versions up to, and including, 1.4. This is due to the software...
WordPress Request a Quote for WooCommerce and Elementor Plugin <= 1.4 is vulnerable to Broken Access Control
Software Request a Quote for WooCommerce and Elementor Type Plugin Vulnerable versions = 1.4 Fixed in 1.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-11034 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 2d3c6e744950 Credits...