VYPR
High severity8.5NVD Advisory· Published Jun 4, 2024· Updated Apr 28, 2026

CVE-2024-33568

CVE-2024-33568

Description

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Deserialization of Untrusted Data vulnerability in BdThemes Element Pack Pro allows Path Traversal, Object Injection.This issue affects Element Pack Pro: from n/a before 7.19.3.

Affected products

2
  • cpe:2.3:a:bdthemes:element_pack:*:*:*:*:pro:wordpress:*:*+ 1 more
    • cpe:2.3:a:bdthemes:element_pack:*:*:*:*:pro:wordpress:*:*range: <=7.7.4
    • (no CPE)range: < 7.19.3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.