WordPress Plugin Vulnerabilities

RomethemeKit For Elementor < 1.5.4 - Missing Authorization in save_options and reset_widgets

Description

The RomethemeKit For Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_options and reset_widgets functions in all versions up to, and including, 1.5.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify plugin settings or reset plugin widgets to their default state (all enabled). NOTE: This vulnerability was partially fixed in version 1.5.3.

Affects Plugins

Plugin icon
rometheme-for-elementor
Fixed in 1.5.4

References

CVE
CVE-2024-10326
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/230b3f2f-44cf-46eb-8e6a-3c52f2ea2fb9

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Tieu Pham Trong Nhan, incognito
Verified
No
WPVDB ID
6e9d5b91-50bc-40d1-9e52-fe6bab5192aa

Timeline

Publicly Published
2025-01-14 (about 1 year ago)
Added
2025-03-11 (about 1 year ago)
Last Updated
2025-03-11 (about 1 year ago)

Other

Published
Title
Published
2024-10-11
Title
Read more By Adam <= 1.1.8 - Missing Authorization to Authenticated (Subscriber+) Read More Button Deletion
Published
2026-03-02
Title
AnyTrack Affiliate Link Manager <= 1.5.5 - Missing Authorization
Published
2026-05-07
Title
Royal Elementor Addons < 1.7.1053 - Unauthenticated Missing Authorization
Published
2024-09-12
Title
Classified Listing – Classified ads & Business Directory Plugin < 3.1.8 - Missing Authorization
Published
2025-01-06
Title
AI for SEO < 1.2.10 - Missing Authorization