CVE-2024-33914

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published May 3, 2024

CWE ID 862

Summary

CVE-2024-33914 is a critical authorization vulnerability affecting Exclusive Addons Elementor, a popular plugin used with the Elementor page builder. Versions from n/a to 2.6.9.1 are susceptible to this issue. An attacker can exploit this vulnerability to gain unauthorized access to user accounts and make unapproved changes to websites, potentially leading to data breaches or defacement. Users are advised to update to the latest version of Exclusive Addons Elementor as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vq57aq
https://www.cve.org/CVERecord?id=CVE-2024-33914
https://nvd.nist.gov/vuln/detail/CVE-2024-33914

Back to Vulnerability Database

CVE-2024-33914

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations