4 matches found
CVE-2024-13808
The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.4.9 via the custom PHP widget. This is due to their only being client side controls when determining who can access the widget. This makes it possible for...
CVE-2024-13808
creationtimestamp| type| source ---|---|--- 2025-04-26 04:59:46+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnoxcmccjna2 2025-04-26 05:08:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13565 2025-04-26 07:43:24+00:00| seen|...
CVE-2024-13808 Xpro Elementor Addons - Pro <= 1.4.9 - Authenticated (Contributor+) Remote Code Execution
The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.4.9 via the custom PHP widget. This is due to their only being client side controls when determining who can access the widget. This makes it possible for...
WordPress Xpro Elementor Addons - Pro plugin <= 1.4.9 - Authenticated (Contributor+) Remote Code Execution vulnerability
WordPress Xpro Elementor Addons - Pro plugin = 1.4.9 - Authenticated Contributor+ Remote Code Execution vulnerability discovered by stealthcopter in WordPress Plugin Xpro Elementor Addons - Pro versions = 1.4.9...