Описание
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in StylemixThemes Consulting Elementor Widgets, StylemixThemes Masterstudy Elementor Widgets allows OS Command Injection.This issue affects Consulting Elementor Widgets: from n/a through 1.3.0; Masterstudy Elementor Widgets: from n/a through 1.2.2.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.3.1 (исключая)
cpe:2.3:a:stylemixthemes:consulting_elementor_widgets:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 92%
0.08111
Низкий
9.9 Critical
CVSS3
8.8 High
CVSS3
Дефекты
CWE-77
CWE-78
Связанные уязвимости
CVSS3: 9.9
github
больше 1 года назад
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in StylemixThemes Consulting Elementor Widgets allows OS Command Injection.This issue affects Consulting Elementor Widgets: from n/a through 1.3.0.
EPSS
Процентиль: 92%
0.08111
Низкий
9.9 Critical
CVSS3
8.8 High
CVSS3
Дефекты
CWE-77
CWE-78