Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) 3.5.1

  • Severity: high-risk
  • Status: Fixed
  • Publication: May 3, 2024

The Sina Extension for Elementor is a plugin for WordPress that allows users to add various elements such as sliders, galleries, forms, modals, data tables, tabs, particles, and other widgets and templates to their website. However, this plugin has a security vulnerability that affects all versions up to 3.5.1. This vulnerability allows attackers who have contributor-level access or higher to include and run any file on the server, which could lead to accessing confidential information or executing malicious code. This vulnerability can be exploited even if the file types being uploaded are considered safe.

Detected in:

Sina Extension for Elementor (Header Builder, Footer Builter, Theme Builder, Slider, Gallery, Form, Modal, Data Table Free Elementor Widgets & Elementor Templates) fixed vulnerable versions:
Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) fixed vulnerable versions: >= * <= 3.5.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.