What is CVE-2024-10324?

CVE-2024-10324 is a medium-severity vulnerability in Rometheme Rtmkit, classified under CWE-1230. CVSS score: 4.3/10. Published 2025-01-24.

How severe is CVE-2024-10324?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Vulnerability in Rometheme Rtmkit

CVE-2024-10324

The RomethemeKit For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.5.2 via the register_controls function in widgets/offcanvas-rometheme.php. This makes it possible f…

EPSS: 0.002 (43.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N.

Affected products

Rometheme Rtmkit — versions 0

Weakness classification (CWE)

CWE-1230

References

www.wordfence.com/threat-intel/vulnerabilities/id/cd726b20-75c9-408e-86fc-061db…
plugins.trac.wordpress.org/changeset/3220079/rometheme-for-elementor

Frequently asked questions

What is CVE-2024-10324?: CVE-2024-10324 is a medium-severity vulnerability in Rometheme Rtmkit, classified under CWE-1230. CVSS score: 4.3/10. Published 2025-01-24.
How severe is CVE-2024-10324?: Medium severity. CVSS v3 base score is 4.3 out of 10.