CVE-2024-24840

MEDIUM

BdThemes Element Pack <5.4.11 - Info Disclosure

Title source: llm
STIX 2.1

Description

Missing Authorization vulnerability in BdThemes Element Pack Elementor Addons.This issue affects Element Pack Elementor Addons: from n/a through 5.4.11.

Scores

CVSS v3 4.3
EPSS 0.0029
EPSS Percentile 20.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-862
Status published
Products (2)
BdThemes/Element Pack Elementor Addons < 5.4.11
bdthemes/element_pack < 5.4.12
Published Mar 23, 2024
Tracked Since Feb 18, 2026