Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:royal-elementor-addons:royal_elementor_addons:1.3.46:*:*:*:*:wordpress:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2022-4102 |
The Royal Elementor Addons WordPress plugin before 1.3.56 does not have authorization and CSRF checks when deleting a template and does not ensure that the post to be deleted is a template. This could allow any authenticated users, such as subscribers, to delete arbitrary posts assuming they know the related slug. Published: January 09, 2023; 6:15:27 PM -0500 |
V4.0:(not available) V3.1: 3.1 LOW V2.0:(not available) |