exploitDog

CVE-2024-43932

Опубликовано: 01 нояб. 2024

Источник: nvd

CVSS3: 6.5

CVSS3: 8.8

EPSS Низкий

Описание

Missing Authorization vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.6.2.

Ссылки

https://patchstack.com/database/vulnerability/the-plus-addons-for-elementor-page-builder/wordpress-the-plus-addons-for-elementor-plugin-5-6-2-broken-access-control-vulnerability?_s_id=cve
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:posimyth:the_plus_addons_for_elementor:*:*:*:*:free:wordpress:*:*

Версия до 5.6.3 (исключая)

EPSS

Процентиль: 57%

0.00347

Низкий

6.5 Medium

CVSS3

8.8 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-r39c-39hv-2mw9

CVSS3: 6.5

github

больше 1 года назад

Missing Authorization vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.6.2.

EPSS

Процентиль: 57%

0.00347

Низкий

6.5 Medium

CVSS3

8.8 High

CVSS3

Дефекты

CWE-862