CVE-2024-4359

Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.2 - Authenticated (Contributor+) Arbitrary File Read

Description

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 5.7.2 via the SVG widget and a lack of sufficient file validation in the render_svg function. This makes it possible for authenticated attackers, with contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

References

Link	Tags
https://www.wordfence.com/threat-intel/vulnerabilities/id/a55cfeb3-7632-4a88-ac71-8e119b060721?source=cve	third party advisory
https://plugins.trac.wordpress.org/browser/bdthemes-element-pack-lite/trunk/modules/svg-image/widgets/svg-image.php#L847	patch

Frequently Asked Questions

What is the severity of CVE-2024-4359?: CVE-2024-4359 has been scored as a medium severity vulnerability.
How to fix CVE-2024-4359?: To fix CVE-2024-4359, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-4359 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2024-4359 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-4359?: CVE-2024-4359 affects bdthemes Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows).

Description

Categories

CWE-98 – Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

CWE-829 – Inclusion of Functionality from Untrusted Control Sphere

References

Frequently Asked Questions