Home
CRITICAL: 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HDefault status
unaffected
Any version
affected
Description
Contributor Arbitrary File Upload in Unlimited Elements for Elementor (Premium) <= 2.0.6 versions.
Problem types
CWE-434 Unrestricted Upload of File with Dangerous Type
Product status
Any version
Credits
Phat RiO | Patchstack Bug Bounty Program
References
patchstack.com/...itrary-file-upload-vulnerability?_s_id=cve