cleantalk
Vulnerabilities and Security Researches

Stratum – Elementor Widgets, CVE-2024-10316

CVE, Research URL

CVE-2024-10316

Home page URL

Security reports for Stratum – Elementor Widgets

Application

Stratum – Elementor Widgets

Published on
Nov 21, 2024
Research Description
The Stratum – Elementor Widgets plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.4 in includes/templates/content-switcher.php. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive private, pending, and draft template data.
Affected versions
Min -, max 1.4.5.
Status
vulnerable
Previous vulnerability researches
Stratum – Elementor Widgets (CVE-2024-10316) , Nov 21, 2024
Stratum – Elementor Widgets (CVE-2024-13642) , Feb 01, 2025
Stratum – Elementor Widgets (CVE-2025-7845) , Aug 02, 2025
Stratum – Elementor Widgets (CVE-2024-5611) , Jun 17, 2024
Stratum – Elementor Widgets (CVE-2024-29914) , Jun 07, 2024
New vulnerability
Gutenverse – Gutenberg Blocks – Page Builder for Site Editor (CVE-2025-7727) , Aug 07, 2025
Flex Guten – A Multipurpose Gutenberg Blocks Plugin (CVE-2025-6256) , Aug 07, 2025
Simple File List (CVE-2025-54021) , Aug 07, 2025
Newsletters (CVE-2025-54034) , Aug 07, 2025
FileBird – WordPress Media Library Folders & File Manager (CVE-2025-6986) , Aug 07, 2025