cleantalk
Vulnerabilities and Security Researches

Animator – Scroll Triggered Animations, cf0d6ce4149212cae4de5df9898160e72ee42fbb

CVE, Research URL

cf0d6ce4149212cae4de5df9898160e72ee42fbb

Home page URL

Security reports for Animator – Scroll Triggered Animations

Application

Animator – Scroll Triggered Animations

Published on
Nov 09, 2023
Research Description
Animator &#8211; Scroll Triggered Animations [scroll-triggered-animations] < 3.0.11 WordPress Animator Plugin <= 3.0.9 is vulnerable to Broken Access Control No patched version available. Elliot discovered and reported this Broken Access Control vulnerability in WordPress Animator Plugin. A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action. This vulnerability has not been known to be fixed yet.
Affected versions
Min -, max 3.0.11.
Status
vulnerable
Previous vulnerability researches
Animator &#8211; Scroll Triggered Animations (cf0d6ce4149212cae4de5df9898160e72ee42fbb) , Jun 07, 2024
Animator &#8211; Scroll Triggered Animations (CVE-2024-49308) , Oct 19, 2024
Animator &#8211; Scroll Triggered Animations (CVE-2023-47689) , Jun 10, 2024
Animator &#8211; Scroll Triggered Animations (CVE-2025-54039) , Jul 18, 2025
New vulnerability
WP Pipes (CVE-2025-28982) , Jul 19, 2025
LightBox Block (CVE-2025-54051) , Jul 19, 2025
Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal (CVE-2025-6043) , Jul 19, 2025
Ruven Themes: Shortcodes (CVE-2025-7648) , Jul 19, 2025
Torod &#8211; The smart shipping and delivery portal for e-shops and retailers (CVE-2025-30936) , Jul 19, 2025