5 matches found
CVE-2024-37089
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in StylemixThemes Consulting Elementor Widgets allows PHP Local File Inclusion.This issue affects Consulting Elementor Widgets: from n/a through 1.3.0...
CVE-2024-37089
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in StylemixThemes Consulting Elementor Widgets allows PHP Local File Inclusion.This issue affects Consulting Elementor Widgets: from n/a through 1.3.0...
CVE-2024-37089 WordPress Consulting Elementor Widgets plugin <= 1.3.0 - Unauthenticated Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in StylemixThemes Consulting Elementor Widgets allows PHP Local File Inclusion.This issue affects Consulting Elementor Widgets: from n/a through 1.3.0...
CVE-2024-37089
CVE-2024-37089 is an instance of an Unauthenticated Local File Inclusion via path traversal in the WordPress plugin Consulting Elementor Widgets (affected versions: up to 1.3.0). The root cause is an improper limitation of a pathname to a restricted directory, enabling an attacker to access arbit...
WordPress Consulting Elementor Widgets Plugin <= 1.3.0 is vulnerable to Local File Inclusion
Software Consulting Elementor Widgets Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-37089 Patch priority High CVSS severity High 9 Developer Claim ownership PSID af33d70e30a2 Credits Rafie Muhammad Patchstack...