CVE-2019-15839
Severity CVSS v4.0:
Pending analysis
Type:
CWE-22
Path Traversal
Publication date:
30/08/2019
Last modified:
24/03/2025
Description
The sina-extension-for-elementor plugin before 2.2.1 for WordPress has local file inclusion.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:sinaextra:sina_extension_for_elementor:*:*:*:*:*:wordpress:*:* | 2.2.1 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://wordpress.org/plugins/sina-extension-for-elementor/#developers
- https://wpvulndb.com/vulnerabilities/9368
- https://www.pluginvulnerabilities.com/2019/06/18/our-proactive-monitoring-caught-a-local-file-inclusion-lfi-vulnerability-being-added-in-to-sina-extension-for-elementor/
- https://wordpress.org/plugins/sina-extension-for-elementor/#developers
- https://wpvulndb.com/vulnerabilities/9368
- https://www.pluginvulnerabilities.com/2019/06/18/our-proactive-monitoring-caught-a-local-file-inclusion-lfi-vulnerability-being-added-in-to-sina-extension-for-elementor/