1 results (0.001 seconds)

CVSS: 5.4EPSS: %CPEs: 1EXPL: 0

The Rife Elementor Extensions & Templates plugin for WordPress is vulnerable to missing authorization due to a missing capability check on the 'import_templates' function in versions up to, and including, 1.1.10. This makes it possible for authenticated attackers with subscriber-level access, and above, to import and activate templates on the site. • CWE-862: Missing Authorization •