CVE Daily

CVE-2023-39157

Improper Control of Generation of Code ('Code Injection') vulnerability in Croco...

Critical CVSS 9.0

Overview

Improper Control of Generation of Code ('Code Injection') vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.10.

CWE: CWE-94 Published: 2023-12-31T10:15:07.877
Risk analysis

This vulnerability is rated 🔴 CRITICAL.

  • CVSS: 9.0 (CRITICAL)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags