CVE-2024-10321 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.4…
Medium CVSS: 4.3

CVE-2024-10321

The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.4 in elements/advanced-tab/template/view.php. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive private, pending, and draft template data.
Vendor
Themesgrove
Product
All-in-one Addons For Elementor
CWE
CWE-200
Yayın Tarihi
2025-03-08 09:15:29
Güncelleme
2025-03-13 13:07:01
Source Identifier
security@wordfence.com
KEV Date Added
-

Kategoriler

CWE-200 All-in-one Addons For Elementor MEDIUM Themesgrove 2025

Referanslar

https://plugins.trac.wordpress.org/browser/widgetkit-for-elementor/trunk/elements/advanced-tab/template/view.php#L68 https://www.wordfence.com/threat-intel/vulnerabilities/id/2e470017-c453-435d-8342-66874a794537?source=cve