Security Advisory

CVE-2023-5360

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-31 13:54:42

Last updated 2025-02-13 17:20:09

Assigner WPScan

State PUBLISHED

Description

The Royal Elementor Addons and Templates WordPress plugin before 1.3.79 does not properly validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE.

← Browse all CVEs View on cve.org ↗