Royal-elementor-addons CVE

Filtered by vendor Royal-elementor-addons Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-5360	1 Royal-elementor-addons	1 Royal Elementor Addons	2023-11-29	N/A	9.8 CRITICAL
The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE.

Vulnerabilities (CVE)