2 matches found
CVE-2024-2210 The Plus Addons for Elementor <= 5.4.1 - Authenticated (Contributor+) Local File Inclusion via Team Member Listing
The The Plus Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.4.1 via the Team Member Listing widget. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrar...
CVE-2024-2210
The CVE-2024-2210 entry pertains to The Plus Addons for Elementor WordPress plugin. It enables Local File Inclusion via the Team Member Listing widget in all versions up to 5.4.1, allowing authenticated users with contributor privileges or higher to include and execute arbitrary PHP code from ser...