Lucene search
HistoryAug 13, 2024 - 12:15 p.m.
CVE-2024-43140
vulnerability
g5theme
elementor
path traversal
php
local file inclusion
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.7%
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in G5Theme Ultimate Bootstrap Elements for Elementor allows PHP Local File Inclusion.This issue affects Ultimate Bootstrap Elements for Elementor: from n/a through 1.4.4.
Affected configurations
Node
g5plusultimate_bootstrap_elements_for_elementorRange<1.4.5wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| g5plus | ultimate_bootstrap_elements_for_elementor | * | cpe:2.3:a:g5plus:ultimate_bootstrap_elements_for_elementor:*:*:*:*:*:wordpress:*:* |
Related
cve
cve
CVE-2024-43140
2024-08-13 12:15:06
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.7%
Related for NVD:CVE-2024-43140