VYPR

Education Addon for Elementor

by WordPress

CVEs (1)

  • CVE-2024-13854MedFeb 19, 2025
    risk 0.28cvss 4.3epss 0.00

    The Education Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.3.1 via the naedu_elementor_template shortcode due to missing validation on a user controlled key. This makes it possible for…