Vulnetix
Try Vulnetix Request Demo
CVE-2023-5360 PUBLISHED CVSS 9.800000190734863 CRITICAL

The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE.

EPSS 93.48% · 99.8th percentile

Risk Scores

CVSS v3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
93.48%
99.8th percentile

Affected Products

VendorProductVersions
UnknownRoyal Elementor Addons and Templates0, 0
royal-elementor-addonsroyal_elementor_addons0, 0, 0

Timeline

References

Open in Interactive Console →