Lucene search
K

8 matches found

NVD
NVD
added 2026/05/14 7:16 a.m.26 views

CVE-2026-5193

The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.5.13. This is due to insufficient role validation in the 'registeruser' function, which only blocks the 'administrator' rol...

6.5CVSS0.00238EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/14 6:44 a.m.5 views

CVE-2026-5193

The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.5.13. This is due to insufficient role validation in the 'registeruser' function, which only blocks the 'administrator' rol...

6.5CVSS5.8AI score0.00238EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/14 6:44 a.m.10 views

EUVD-2026-30248

The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.5.13. This is due to insufficient role validation in the 'registeruser' function, which only blocks the 'administrator' rol...

6.5CVSS5.8AI score0.00238EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/22 12:0 a.m.5 views

CVE-2025-55627

Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allows authenticated attackers to create accounts with elevated privileges...

6.5AI score0.00222EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/22 12:0 a.m.10 views

CVE-2025-55627

Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allows authenticated attackers to create accounts with elevated privileges...

0.00222EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.5 views

PT-2025-34458 · Reolink · Reolink Smart 2K+ Plug-In Wi-Fi Video Doorbell With Chime

Name of the Vulnerable Software and Affected Versions: Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime version 3.0.0.4662 2503122283 Description: The device suffers from insufficient privilege verification. Authenticated attackers can create accounts with elevated privileges...

5.3CVSS7.2AI score0.00222EPSS
Exploits0References5
Penetration Testing Lab
Penetration Testing Lab
added 2021/10/20 8:3 a.m.69 views

Lateral Movement – WebClient

Coercing elevated accounts such as machine accounts to authenticate to a host under the control of an attacker can provide an opportunity for privilege escalation… Continue reading - Lateral Movement - WebClient...

3.3AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/09/09 12:0 a.m.5 views

The vulnerability of the DirectX component in Windows operating systems allows attackers to gain rights to install programs, view, modify, or delete data, as well as create new accounts with full user privileges.

The vulnerability of the DirectX component in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to gain privileges to install programs, view, modify, or delete data, and create new user accounts with full user rights using a...

7CVSS7.2AI score0.00901EPSS
Exploits0References3
Rows per page
Query Builder