CVE-2024-10360 - Elementor Move Addons WordPress Sensitive Information Exposure

3 weeks ago 9
ARTICLE AD BOX
CVE ID : CVE-2024-10360
Published : Oct. 29, 2024, 11:15 a.m. | 24 minutes ago
Description : The Move Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.5 via the render function in includes/widgets/accordion/widget.php, includes/widgets/remote-template/widget.php, and other widget.php files. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive private, pending, and draft template data.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article