Elementor Pro Plugin Luki w zabezpieczeniach

Oś czasu

Wersja

2.9.0	2
2.9.1	2
2.9.2	2
2.9.3	2
5.4.0	2

Przeciwdziałanie

Official Fix	4
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	6

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	10

Wektor dostępu

Not Defined	0
Physical	0
Local	0
Adjacent	1
Network	9

Uwierzytelnianie

Not Defined	0
High	0
Low	6
None	4

Interakcja z użytkownikiem

Not Defined	0
Required	5
None	5

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	1
≤5	2
≤6	3
≤7	2
≤8	1
≤9	1
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	1
≤5	2
≤6	4
≤7	1
≤8	1
≤9	1
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	2
≤5	5
≤6	0
≤7	2
≤8	1
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	2
≤8	0
≤9	1
≤10	1

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	1
≤7	2
≤8	1
≤9	1
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	9
<5k	1
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	8
<2k	2
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (63): 2, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.9, 2.9.1, 2.9.2, 2.9.3, 2.9.4, 2.9.5, 2.9.6, 2.9.7, 2.9.8, 2.9.9, 2.9.11, 2.9.12, 3.11, 3.11.1, 3.11.2, 3.11.3, 3.11.4, 3.11.5, 3.11.6, 3.19, 3.19.1, 3.19.2, 4.1, 4.10.1, 4.10.2, 4.10.3, 4.10.4, 4.10.5, 4.10.6, 4.10.7, 4.10.8, 4.10.9, 4.10.11, 4.10.12, 4.10.13, 4.10.14, 4.10.15, 4.10.16, 4.10.17, 4.10.18, 4.10.19, 4.10.21, 4.10.22, 4.10.23, 5.4, 5.4.1, 5.4.2, 5.4.3, 5.4.4, 5.4.5, 5.4.6, 5.4.7, 5.4.8

Typ oprogramowania: WordPress Plugin

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2024-03-16	5.4	5.3	Elementor Pro Plugin information disclosure	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	CVE-2024-23523
2024-03-14	4.9	4.9	Premium Addons for Elementor Pro Plugin cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2024-2399
2024-03-07	3.5	3.4	Premium Addons for Elementor Pro Plugin Widget Link cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2024-1996
2023-11-19	6.2	6.1	WPDeveloper Essential Addons for Elementor Pro Plugin cross site request forgery	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-32245
2023-08-30	5.8	5.8	WPDeveloper Essential Addons for Elementor Pro Plugin cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.06	CVE-2023-32241
2023-06-07	7.5	7.4	Elementor Pro Plugin update_page_option privilege escalation	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2023-3124
2022-01-10	6.3	6.0	Plus Addons for Elementor Pro Plugin WP Search Filters Widget sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2021-24949
2022-01-10	4.3	4.1	Plus Addons for Elementor Pro Plugin AJAX Action tp_get_dl_post_info_ajax information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-24948
2020-05-17	8.6	8.3	Elementor Pro Plugin privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-13126
2019-10-07	5.2	5.1	Elementor Pro Plugin customize.php elementor-edit-template cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2018-18379

◂ PoprzedniPrzeglądKolejny ▸

Do you know our Splunk app?

Download it now for free!