Lucene search
PatchstackCVE-2024-23523HistoryMar 16, 2024 - 5:15 a.m.
CVE-2024-23523
2024-03-1605:15:21
CWE-200
Patchstack
web.nvd.nist.gov
122
cve-2024-23523
vulnerability
elementor pro
sensitive information
unauthorized access
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
9.3
Confidence
High
EPSS
0
Percentile
9.0%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Elementor Pro.This issue affects Elementor Pro: from n/a through 3.19.2.
Affected configurations
Node
elementorelementor_proRange≤3.19.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| elementor | elementor_pro | * | cpe:2.3:a:elementor:elementor_pro:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Elementor Pro",
"vendor": "Elementor",
"versions": [
{
"changes": [
{
"at": "3.19.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.19.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-23523
2024-03-16 05:15:21
wpvulndb
wpvulndb
Elementor Pro < 3.19.3 - Authenticated (Contributor+) Information Exposure
2024-03-04 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
9.3
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-23523