CVE-2024-53739

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Nov 30, 2024
CWE ID 98

Summary

CVE-2024-53739 is a filename control vulnerability affecting the Cool Plugins Cryptocurrency Widgets For Elementor. This issue allows for PHP Local File Inclusion due to improper handling of include/require statements in the plugin. This vulnerability could be exploited to execute arbitrary local files, posing a significant security risk. The affected version range is from n/a to 1.6.4. It is crucial for users to update the plugin as soon as a patch becomes available to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share