CVE-2024-2047 | ElementsKit Elementor Addons Plugin up to 3.0.6 on WordPress render_raw file inclusion

Inserito da Angelo Barbosa | Mar 29, 2024 | CVE

A vulnerability, which was classified as critical, has been found in ElementsKit Elementor Addons Plugin up to 3.0.6 on WordPress. This issue affects the function render_raw. The manipulation leads to file inclusion.

The identification of this vulnerability is CVE-2024-2047. The attack may be initiated remotely. There is no exploit available.

CVE-2024-2047 | ElementsKit Elementor Addons Plugin up to 3.0.6 on WordPress render_raw file inclusion

Post correlati

CVE-2024-2220 | Button Contact VR Plugin up to 4.7 on WordPress Setting cross site scripting

CVE-2024-34707 | Nautobot up to 1.6.21/2.2.3 /admin/constance/config/ BANNER_TOP/BANNER_BOTTOM/BANNER_LOGIN cross site scripting

CVE-2024-3779 | ESET NOD32 Antivirus Installation/Upgrade default permission

CVE-2023-48114 | SmarterTools SmarterMail prior 16.x Build 8747 SVG Document unrestricted upload