Lucene search
PatchstackCVE-2024-43140HistoryAug 13, 2024 - 12:15 p.m.
CVE-2024-43140
2024-08-1312:15:06
CWE-22
Patchstack
web.nvd.nist.gov
23
cve-2024-43140
g5theme elements
path traversal
php local file inclusion
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.7%
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in G5Theme Ultimate Bootstrap Elements for Elementor allows PHP Local File Inclusion.This issue affects Ultimate Bootstrap Elements for Elementor: from n/a through 1.4.4.
Affected configurations
Node
g5plusultimate_bootstrap_elements_for_elementorRange<1.4.5wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| g5plus | ultimate_bootstrap_elements_for_elementor | * | cpe:2.3:a:g5plus:ultimate_bootstrap_elements_for_elementor:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "ultimate-bootstrap-elements-for-elementor",
"product": "Ultimate Bootstrap Elements for Elementor",
"vendor": "G5Theme",
"versions": [
{
"changes": [
{
"at": "1.4.5",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.4.4",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-43140
2024-08-13 12:15:06
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.7%
Related for CVE-2024-43140