Davidfdzmorilla

Authentication Bypass Using an Alternate Path or Channel vulnerability in Liquid Web / StellarWP BookIt allows Password Recovery Exploitation. This issue affects BookIt: from n/a before 2.5.4.1.

**Name of the Vulnerable Software and Affected Versions** Elementor Website Builder versions prior to 3.35.5 **Description** An authorization issue exists in Elementor Website Builder. The issue involves exploiting incorrectly configured access control security levels. No information was provided regarding the number of potentially affected devices or any real-world incidents. The vulnerability allows bypassing intended access restrictions. **Recommendations** Update Elementor Website Builder to a version newer than 3.35.5.

**Name of the Vulnerable Software and Affected Versions** Contact Form by WPForms versions n/a through 1.9.9.3 **Description** A missing authorization flaw exists in Syed Balkhi Contact Form by WPForms wpforms-lite. This issue allows exploitation of incorrectly configured access control security levels. **Recommendations** Versions prior to 1.9.9.4 should be updated.