The News Element Elementor Blog Magazine WordPress plugin before 1.0.6 is vulnerable to Local File Inclusion via the template parameter. This makes it possible for unauthenticated attacker to include and execute PHP files on the server, allowing the execution of any PHP code in those files.
References
Configurations
No configuration.
History
06 Sep 2024, 17:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
19 Aug 2024, 13:00
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
17 Aug 2024, 06:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-17 06:15
Updated : 2024-09-06 17:35
NVD link : CVE-2024-6459
Mitre link : CVE-2024-6459
CVE.ORG link : CVE-2024-6459
JSON object : View
Products Affected
No product.
CWE
No CWE.