Vulnerabilities > CVE-2021-24265 - Unspecified vulnerability in Apollo13Themes Rife Elementor Extensions & Templates

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

apollo13themes

NVD

Published: 2021-05-05

Updated: 2024-11-21

Summary

The “Rife Elementor Extensions & Templates” WordPress Plugin before 1.1.6 has a widget that is vulnerable to stored Cross-Site Scripting(XSS) by lower-privileged users such as contributors, all via a similar method.

Vulnerable Configurations

Part	Description	Count
Application	Apollo13Themes Apollo13Themes Rife Elementor Extensions & Templates - Apollo13Themes Rife Elementor Extensions & Templates 1.0.0 Apollo13Themes Rife Elementor Extensions & Templates 1.0.1 Apollo13Themes Rife Elementor Extensions & Templates 1.1.0 Apollo13Themes Rife Elementor Extensions & Templates 1.1.1 Apollo13Themes Rife Elementor Extensions & Templates 1.1.2 Apollo13Themes Rife Elementor Extensions & Templates 1.1.3 Apollo13Themes Rife Elementor Extensions & Templates 1.1.4 Apollo13Themes Rife Elementor Extensions & Templates 1.1.5	9

Summary

Vulnerable Configurations

References