Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:6 a.m.18 views

CVE-2024-3499

The ElementsKit Elementor addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.0 via the generatenavigationmarkup function of the Onepage Scroll module. This makes it possible for authenticated attackers, with contributor-level access and...

8.8CVSS7.6AI score0.01063EPSS
Exploits0References1
CVE
CVE
added 2024/05/02 4:52 p.m.60 views

CVE-2024-3499

The CVE-2024-3499 entry concerns ElementsKit Elementor addons and Templates Library for WordPress. Impact arises from a Local File Inclusion in the Onepage Scroll module’s generate_navigation_markup function, enabling an authenticated attacker with contributor+ privileges to include and execute a...

8.8CVSS7.6AI score0.01063EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/02 4:52 p.m.34 views

CVE-2024-3499 ElementsKit Elementor addons <= 3.1.0 - Authenticated (Contributor+) Local File Inclusion via Onepage Scroll Module

The ElementsKit Elementor addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.0 via the generatenavigationmarkup function of the Onepage Scroll module. This makes it possible for authenticated attackers, with contributor-level access and...

8.8CVSS9.1AI score0.01063EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/04/24 12:0 a.m.19 views

WordPress Elements kit Elementor addons Plugin <= 3.1.0 is vulnerable to Local File Inclusion

Software Elements kit Elementor addons Type Plugin Vulnerable versions = 3.1.0 Fixed in 3.1.1 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-3499 Patch priority Low CVSS severity Low 8.5 Developer Wpmet PSID 43728e112e86 Credits Webbernaut Required privilege Contribut...

8.8CVSS6.8AI score0.01063EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder