- Description
- The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5 via the rtw_pgaepb_dwnld_pdf() function. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information.
- Source
- security@wordfence.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
- security@wordfence.com
- CWE-22
- Hype score
- Not currently trending
CVE-2024-9935 : WP PDF Generator Addon for Elementor Page Builder. PoC https://t.co/xiIAt45fsx https://t.co/kCtyMCmsyB
@cyber_advising
27 Dec 2024
834 Impressions
1 Retweet
9 Likes
6 Bookmarks
0 Replies
0 Quotes
CVE-2024-9935 - PDF Generator Addon for Elementor Page Builder <= 1.7.5 - Unauthenticated Arbitrary File Download https://t.co/BcMIKtmKMr
@ytroncal
23 Dec 2024
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Warning for WordPress users! The PDF Generator Addon for Elementor (<= 1.7.5) has a severe vulnerability (CVE-2024-9935) allowing unauthenticated file access, risking sensitive data exposure. Update now! #WordPress #Security #CVE2024 #Elementor 🔒 - V… https://t.co/AK3lyU7U
@prod42net
21 Dec 2024
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 New CVE Alert! 🚨 CVE-2024-9935 FOFA: body="wp-content/plugins/pdf-generator-addon-for-elementor-page-builder/" Shodan: http.favicon.hash:1198047028 https://t.co/EXG3HyU9FX
@yunus_huse99988
29 Nov 2024
12 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
LFI Mass Hunting Explained | Directory Traversal POC & CVE-2024-9935 for Bug Bounty #BugBounty #bugbountytips #CyberSecurity #life #MilkLove #MEXC poc :- https://t.co/hKTDvIurxg join Telegram:- https://t.co/xEJtYhMjr0 https://t.co/QaE1MDhjtw
@Haxshadow7
27 Nov 2024
94 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-9935 (CVSS:7.5, HIGH) is Awaiting Analysis. The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path Traversal in all versions ..https://t.co/9ekexe8asK #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
21 Nov 2024
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-9935 Path Traversal Vulnerability in Elementor PDF Generator Plugin The PDF Generator Addon for Elementor Page Builder plugin for WordPress has a Path Traversal vulnerability. This affects all versions u... https://t.co/UZ7HQd0ETu
@VulmonFeeds
16 Nov 2024
61 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-9935 The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5 via the rtw_pgaepb_d… https://t.co/EdVDhbUlGX
@CVEnew
16 Nov 2024
471 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes