exploitDog

CVE-2025-68494

Опубликовано: 24 дек. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor allows Retrieve Embedded Sensitive Data.This issue affects Premium Addons for Elementor: from n/a through <= 4.11.53.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/premium-addons-for-elementor/vulnerability/wordpress-premium-addons-for-elementor-plugin-4-11-53-sensitive-data-exposure-vulnerability?_s_id=cve

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:leap13:premium_addons_for_elementor:*:*:*:*:*:wordpress:*:*

Версия до 4.11.54 (исключая)

EPSS

Процентиль: 13%

0.00044

Низкий

7.5 High

CVSS3

Дефекты

CWE-497

Связанные уязвимости

GHSA-22vc-cp5h-m3m9

CVSS3: 7.5

github

около 1 месяца назад

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Leap13 Premium Addons for Elementor premium-addons-for-elementor allows Retrieve Embedded Sensitive Data.This issue affects Premium Addons for Elementor: from n/a through <= 4.11.53.

EPSS

Процентиль: 13%

0.00044

Низкий

7.5 High

CVSS3

Дефекты

CWE-497