Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Deserialization of Untrusted Data vulnerability in BdThemes Element Pack Pro allows Path Traversal, Object Injection.This issue affects Element Pack Pro: from n/a before 7.19.3.
                
            Metrics
Affected Vendors & Products
References
        History
                    Sun, 13 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | epss 
 | epss 
 | 
Wed, 26 Feb 2025 12:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Deserialization of Untrusted Data vulnerability in BdThemes Element Pack Pro allows Path Traversal, Object Injection.This issue affects Element Pack Pro: from n/a through 7.7.4. | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Deserialization of Untrusted Data vulnerability in BdThemes Element Pack Pro allows Path Traversal, Object Injection.This issue affects Element Pack Pro: from n/a before 7.19.3. | 
| Title | WordPress Element Pack Pro plugin <= 7.7.4 - Arbitrary File Read and Phar Deserialization vulnerability | WordPress Element Pack Pro plugin < 7.19.3 - Arbitrary File Read and Phar Deserialization vulnerability | 
Wed, 29 Jan 2025 18:00:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Bdthemes Bdthemes element Pack | |
| CPEs | cpe:2.3:a:bdthemes:element_pack:*:*:*:*:pro:wordpress:*:* | |
| Vendors & Products | Bdthemes Bdthemes element Pack | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: Patchstack
Published: 2024-06-04T13:12:10.673Z
Updated: 2025-02-26T12:04:51.830Z
Reserved: 2024-04-24T10:35:13.100Z
Link: CVE-2024-33568
 Vulnrichment
                        Vulnrichment
                    Updated: 2024-08-02T02:36:04.403Z
 NVD
                        NVD
                    Status : Modified
Published: 2024-06-04T14:15:10.440
Modified: 2025-02-26T13:15:39.343
Link: CVE-2024-33568
 Redhat
                        Redhat
                    No data.