Lucene search
K

8 matches found

Patchstack
Patchstack
added 2026/02/02 7:22 p.m.7 views

WordPress The Plus Addons for Elementor plugin <= 5.4.1 - Authenticated (Contributor+) Local File Inclusion via Team Member Listing vulnerability

Authenticated Contributor+ Local File Inclusion via Team Member Listing vulnerability discovered by wesley wcraft in WordPress Plugin The Plus Addons for Elementor Page Builder Lite versions = 5.4.1...

6.4CVSS8.3AI score0.00483EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/03/27 3:15 a.m.1 views

CVE-2024-2210

The The Plus Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.4.1 via the Team Member Listing widget. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrar...

6.4CVSS7.8AI score
Exploits0References2
CVE
CVE
added 2024/03/27 1:56 a.m.65 views

CVE-2024-2210

The CVE-2024-2210 entry pertains to The Plus Addons for Elementor WordPress plugin. It enables Local File Inclusion via the Team Member Listing widget in all versions up to 5.4.1, allowing authenticated users with contributor privileges or higher to include and execute arbitrary PHP code from ser...

6.4CVSS7.5AI score0.00483EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/27 1:56 a.m.29 views

CVE-2024-2210 The Plus Addons for Elementor <= 5.4.1 - Authenticated (Contributor+) Local File Inclusion via Team Member Listing

The The Plus Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.4.1 via the Team Member Listing widget. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrar...

6.4CVSS7AI score0.00483EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.6 views

PT-2024-19206 · WordPress · The Plus Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Plus Addons for Elementor plugin for WordPress versions up to, and including, 5.4.1 Description: The issue allows authenticated attackers with contributor-level access and above to include and execute arbitrary files on the server via the...

6.4CVSS9.9AI score0.00483EPSS
Exploits0References5
OSV
OSV
added 2024/02/29 1:43 a.m.4 views

CVE-2024-1519

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name' parameter in all versions up to, and including, 4.14.4 due to insufficient input sanitization...

6.1CVSS5.9AI score0.00572EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.4 views

PT-2024-18107 · WordPress · Profilepress

Name of the Vulnerable Software and Affected Versions: ProfilePress plugin for WordPress versions up to, and including, 4.14.4 Description: The issue is related to Stored Cross-Site Scripting via the name parameter due to insufficient input sanitization and output escaping. This allows...

6.5CVSS8.2AI score0.00572EPSS
Exploits0References7
Kitploit
Kitploit
added 2013/11/20 12:56 p.m.7 views

[ipset_list] ipset set listing wrapper script

Features: Calculate sum of set members and match on that count. List only members of a specified set. Choose a delimiter character for separating members. Show only sets containing a specific glob matching header. Arithmetic comparison on headers with an integer value. Match members using a...

7.3AI score
Exploits0References1
Rows per page
Query Builder