Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-23180

Disclosure Date: January 16, 2024 (last updated January 25, 2024)
The Contact Form & Lead Form Elementor Builder WordPress plugin before 1.7.4 doesn't have authorisation and nonce checks, which could allow any authenticated users, such as subscriber to update and change various settings
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0