CVE-2024-13854

The Education Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.3.1 via the naedu_elementor_template shortcode due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract information from posts that are not public, including drafts, password protected, and restricted posts. This applies to posts created with Elementor only.

CVSS v3.0 4.3 MEDIUM

4.3^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://wordpress.org/plugins/education-addon/#developers	Product
https://www.wordfence.com/threat-intel/vulnerabilities/id/50e8811c-07b1-4325-92a4-dc1c91afbe9e?source=cve	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:nicheaddons:education_addon:*:*:*:*:*:wordpress:*:*

History

06 Mar 2025, 12:42

Type	Values Removed	Values Added
CPE		cpe:2.3:a:nicheaddons:education_addon::::::wordpress::*
References	~~() https://wordpress.org/plugins/education-addon/#developers -~~	() https://wordpress.org/plugins/education-addon/#developers - Product
References	~~() https://www.wordfence.com/threat-intel/vulnerabilities/id/50e8811c-07b1-4325-92a4-dc1c91afbe9e?source=cve -~~	() https://www.wordfence.com/threat-intel/vulnerabilities/id/50e8811c-07b1-4325-92a4-dc1c91afbe9e?source=cve - Third Party Advisory
First Time		Nicheaddons Nicheaddons education Addon

19 Feb 2025, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-02-19 08:15

Updated : 2025-03-06 12:42

NVD link : CVE-2024-13854

Mitre link : CVE-2024-13854

JSON object : View

Products Affected

nicheaddons

education_addon

CWE

CWE-284

Improper Access Control

4.3 /10