3 matches found
CVE-2024-1358
CVE-2024-1358 affects the Elementor Addon Elements WordPress plugin (versions ≤ 1.12.12). The vulnerability is a directory traversal flaw in the render function that allows authenticated attackers with contributor access or higher to include contents of arbitrary PHP files on the server, exposing...
CVE-2024-1358 Elementor Addon Elements <= 1.12.12 - Directory Traversal to Local File Inclusion
The Elementor Addon Elements plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.12.12 via the render function. This makes it possible for authenticated attackers, with contributor access or higher, to include the contents of arbitrary PHP files on th...
WordPress Elementor Addon Elements Plugin <= 1.12.12 is vulnerable to Local File Inclusion
Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.12.12 Fixed in 1.13 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-1358 Patch priority Low CVSS severity Low 8.8 Developer WPVibes PSID 7c75b4731d57 Credits wesley wcraft Required privilege...