2 matches found
CVE-2024-4887
The Qi Addons For Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.7.2 via the 'behavior' attributes found in the qiaddonsforelementorbloglist shortcode. This makes it possible for authenticated attackers, with Contributor-level access a...
WordPress Qi Addons For Elementor Plugin <= 1.7.2 is vulnerable to Local File Inclusion
Software Qi Addons For Elementor Type Plugin Vulnerable versions = 1.7.2 Fixed in 1.7.3 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-4887 Patch priority Low CVSS severity Low 8.5 Developer Qode Interactive PSID c1cece0585f4 Credits haidv35 Required privilege...