Cryptocurrency Widgets FOR Elementor

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-30	CVE-2024-53739	Use of Incorrectly-Resolved Name or Reference vulnerability in Coolplugins Cryptocurrency Widgets for Elementor Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Cool Plugins Cryptocurrency Widgets For Elementor allows PHP Local File Inclusion.This issue affects Cryptocurrency Widgets For Elementor: from n/a through 1.6.4. network low complexity coolplugins CWE-706 critical	9.8
2023-06-07	CVE-2022-4950	Missing Authorization vulnerability in multiple products Several WordPress plugins developed by Cool Plugins are vulnerable to arbitrary plugin installation and activation that can lead to remote code execution by authenticated attackers with minimal permissions, such as a subscriber. network low complexity coolplugins cryptocurrency-payment-donation-box-plugins CWE-862	8.8