Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Startklar Elementor Addons Arbitrary File Deletion - CVE-2024-4346 - Vulnerability Database
WP Plugin Startklar Elmentor Forms Extwidgets

WordPress Plugin Startklar Elementor Addons Arbitrary File Deletion - CVE-2024-4346

Critical
Reference: CVE-2024-4346
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-4346
Title: WordPress Plugin Startklar Elementor Addons Arbitrary File Deletion
Overview:

WordPress Plugin Startklar Elementor Addons is prone to a vulnerability that lets attackers delete arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to delete arbitrary files in the context of the webserver process. WordPress Plugin Startklar Elementor Addons version 1.7.13 is vulnerable prior versions may also be affected.