CVE-2023-5922

EUVD-2023-58194
The Royal Elementor Addons and Templates WordPress plugin before 1.3.81 does not ensure that users accessing posts via an AJAX action (and REST endpoint, currently disabled in the plugin) have the right to do so, allowing unauthenticated users to access arbitrary draft, private and password protected posts/pages content
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA-ADPADP
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
royal-elementor-addonsroyal_elementor_addons
𝑥
< 1.3.81
𝑥
= Vulnerable software versions
References
https://wpscan.com/vulnerability/debd8498-5770-4270-9ee1-1503e675ef34/
https://wpscan.com/vulnerability/debd8498-5770-4270-9ee1-1503e675ef34/