{"uuid": "817b66bf-4834-4503-86d0-fcdb446b8408", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9889", "type": "seen", "source": "https://t.me/HackerArsenal/563", "content": "\u203c\ufe0f CVE-2024-9889 \u203c\ufe0f\n\nThe ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.9 via the Page Loader widget. This makes it possible for authenticated attackers, with contributorlevel access and above, to view privatedraftpassword protected posts, pages, and Elementor templates that they should not have access to.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"National Vulnerability Database\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity_CVEs", "creation_timestamp": "2024-10-19T15:27:50.000000Z"}