Vulnerabilities > Coolplugins > Cryptocurrency Widgets FOR Elementor
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-11-30 | CVE-2024-53739 | Use of Incorrectly-Resolved Name or Reference vulnerability in Coolplugins Cryptocurrency Widgets for Elementor Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Cool Plugins Cryptocurrency Widgets For Elementor allows PHP Local File Inclusion.This issue affects Cryptocurrency Widgets For Elementor: from n/a through 1.6.4. | 9.8 |
2023-06-07 | CVE-2022-4950 | Missing Authorization vulnerability in multiple products Several WordPress plugins developed by Cool Plugins are vulnerable to arbitrary plugin installation and activation that can lead to remote code execution by authenticated attackers with minimal permissions, such as a subscriber. | 8.8 |