Vulnerabilities > Coolplugins > Cryptocurrency Widgets FOR Elementor

DATE CVE VULNERABILITY TITLE RISK
2024-11-30 CVE-2024-53739 Use of Incorrectly-Resolved Name or Reference vulnerability in Coolplugins Cryptocurrency Widgets for Elementor
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Cool Plugins Cryptocurrency Widgets For Elementor allows PHP Local File Inclusion.This issue affects Cryptocurrency Widgets For Elementor: from n/a through 1.6.4.
network
low complexity
coolplugins CWE-706
critical
9.8
2023-06-07 CVE-2022-4950 Missing Authorization vulnerability in multiple products
Several WordPress plugins developed by Cool Plugins are vulnerable to arbitrary plugin installation and activation that can lead to remote code execution by authenticated attackers with minimal permissions, such as a subscriber.
8.8