Unrated severityNVD Advisory· Published Jun 24, 2024· Updated Apr 28, 2026
WordPress Consulting Elementor Widgets plugin <= 1.3.0 - Unauthenticated Local File Inclusion vulnerability
CVE-2024-37089
Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in StylemixThemes Consulting Elementor Widgets allows PHP Local File Inclusion.This issue affects Consulting Elementor Widgets: from n/a through 1.3.0.
Affected products
2- Range: <=1.3.0
- StylemixThemes/Consulting Elementor Widgetsv5Range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.