WordPress「LA Studio Element Kit for Elementor」plugin < 1.6.0 透過後門程式造成未經驗證的權限提升
critical Nessus Plugin ID 299364
語言:
版本 1.2
Feb 19, 2026, 12:02 PM
- CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
- CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
- Exploit attributes ("Exploit available" set to "True")
- Exploit attributes ("Exploitability ease" set to "Exploits are available")
Plugin Feed: 202602191202