CVE-2024-53739
CVSS 3.1 Score 8.1 of 10 (high)
Details
Published Nov 30, 2024
CWE ID 98
Summary
CVE-2024-53739 is a filename control vulnerability affecting the Cool Plugins Cryptocurrency Widgets For Elementor. This issue allows for PHP Local File Inclusion due to improper handling of include/require statements in the plugin. This vulnerability could be exploited to execute arbitrary local files, posing a significant security risk. The affected version range is from n/a to 1.6.4. It is crucial for users to update the plugin as soon as a patch becomes available to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share