9.8
CVE-2021-24867
- EPSS 6.69%
- Published 21.02.2022 11:15:08
- Last modified 21.11.2024 05:53:55
- Source contact@wpscan.com
- Teams watchlist Login
- Open Login
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were updated or removed to avoid any confusion
Data is provided by the National Vulnerability Database (NVD)
Accesspressthemes ≫ Accessbuddy Version1.0.0 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Anonymous Post Version2.8.0 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Basic Version3.2.1 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Custom Css Version2.0.1 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Custom Post Type Version1.0.8 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Ifeeds Version4.0.3 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Lite Version2.92 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Mag Version2.6.5 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Parallax Version4.5 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Ray Version1.19.5 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Root Version2.5 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Social Counter Version1.9.1 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Social Icons Version1.8.2 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Social Login Lite Version3.4.7 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Social Share Version4.5.5 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Staple Version1.9.1 SwPlatformwordpress
Accesspressthemes ≫ Accesspress Store Version2.4.9 SwPlatformwordpress
Accesspressthemes ≫ Agency Lite Version1.1.6 SwPlatformwordpress
Accesspressthemes ≫ Ap Companion SwPlatformwordpress Version < 1.0.7
Accesspressthemes ≫ Ap Contact Form Version1.0.6 SwPlatformwordpress
Accesspressthemes ≫ Ap Custom Testimonial Version1.4.6 SwPlatformwordpress
Accesspressthemes ≫ Ap Mega Menu Version3.0.5 SwPlatformwordpress
Accesspressthemes ≫ Ap Pricing Tables Lite Version1.1.2 SwPlatformwordpress
Accesspressthemes ≫ Apex Notification Bar Lite Version2.0.4 SwPlatformwordpress
Accesspressthemes ≫ Aplite Version1.0.6 SwPlatformwordpress
Accesspressthemes ≫ Badge Designer Lite For Woocommerce Version1.1.0 SwPlatformwordpress
Accesspressthemes ≫ Bingle Version1.0.4 SwPlatformwordpress
Accesspressthemes ≫ Bloger Version1.2.6 SwPlatformwordpress
Accesspressthemes ≫ Comments Disable - Accesspress Version1.0.7 SwPlatformwordpress
Accesspressthemes ≫ Construction Lite Version1.2.5 SwPlatformwordpress
Accesspressthemes ≫ Doko Version1.0.27 SwPlatformwordpress
Accesspressthemes ≫ Easy Side Tab Version1.0.7 SwPlatformwordpress
Accesspressthemes ≫ Enlighten Version1.3.5 SwPlatformwordpress
Accesspressthemes ≫ Everest Admin Theme Lite Version1.0.7 SwPlatformwordpress
Accesspressthemes ≫ Everest Coming Soon Lite Version1.1.0 SwPlatformwordpress
Accesspressthemes ≫ Everest Comment Rating Lite Version2.0.4 SwPlatformwordpress
Accesspressthemes ≫ Everest Counter Lite Version2.0.7 SwPlatformwordpress
Accesspressthemes ≫ Everest Faq Manager Lite Version1.0.8 SwPlatformwordpress
Accesspressthemes ≫ Everest Gallery Lite Version1.0.8 SwPlatformwordpress
Accesspressthemes ≫ Everest Gplaces Business Reviews Version1.0.9 SwPlatformwordpress
Accesspressthemes ≫ Everest Review Lite Version1.0.7 SwPlatformwordpress
Accesspressthemes ≫ Everest Tab Lite Version2.0.3 SwPlatformwordpress
Accesspressthemes ≫ Everest Timeline Lite Version1.1.1 SwPlatformwordpress
Accesspressthemes ≫ Fashstore Version1.2.1 SwPlatformwordpress
Accesspressthemes ≫ Form Store To Db Version1.0.9 SwPlatformwordpress
Accesspressthemes ≫ Fotography Version2.4.0 SwPlatformwordpress
Accesspressthemes ≫ Gaga Corp Version1.0.8 SwPlatformwordpress
Accesspressthemes ≫ Gaga Lite Version1.4.2 SwPlatformwordpress
Accesspressthemes ≫ Inline Call To Action Builder Lite Version1.1.0 SwPlatformwordpress
Accesspressthemes ≫ Mcontact Button SwPlatformwordpress Version < 2.0.7
Accesspressthemes ≫ One-paze Version2.2.8 SwPlatformwordpress
Accesspressthemes ≫ Parallax Blog Version3.1.1574941215 SwPlatformwordpress
Accesspressthemes ≫ Parallaxsome Version1.3.6 SwPlatformwordpress
Accesspressthemes ≫ Pi Button Version3.3.3 SwPlatformwordpress
Accesspressthemes ≫ Product Slider For Woocommerce Lite Version1.1.5 SwPlatformwordpress
Accesspressthemes ≫ Punte Version1.1.2 SwPlatformwordpress
Accesspressthemes ≫ Revolve Version1.3.1 SwPlatformwordpress
Accesspressthemes ≫ Ripple Version1.2.0 SwPlatformwordpress
Accesspressthemes ≫ Scrollme Version2.1.0 SwPlatformwordpress
Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.7 SwPlatformwordpress
Accesspressthemes ≫ Smart Scroll Posts Version2.0.8 SwPlatformwordpress
Accesspressthemes ≫ Smart Scroll To Top Lite Version1.0.3 SwPlatformwordpress
Accesspressthemes ≫ Social Auto Poster Version2.1.3 SwPlatformwordpress
Accesspressthemes ≫ Social Review SwPlatformwordpress Version < 1.0.9
Accesspressthemes ≫ Sportsmag Version1.2.1 SwPlatformwordpress
Accesspressthemes ≫ Storevilla Version1.4.1 SwPlatformwordpress
Accesspressthemes ≫ Swing Lite Version1.1.9 SwPlatformwordpress
Accesspressthemes ≫ Tauto Poster Version1.4.5 SwPlatformwordpress
Accesspressthemes ≫ The Launcher Version1.3.2 SwPlatformwordpress
Accesspressthemes ≫ The Monday Version1.4.1 SwPlatformwordpress
Accesspressthemes ≫ Total Gdpr Compliance Lite Version1.0.4 SwPlatformwordpress
Accesspressthemes ≫ Total Team Lite Version1.1.1 SwPlatformwordpress
Accesspressthemes ≫ Ultimate-form-builder-lite Version1.5.0 SwPlatformwordpress
Accesspressthemes ≫ Ultimate Author Box Lite Version1.1.2 SwPlatformwordpress
Accesspressthemes ≫ Uncode Lite Version1.3.1 SwPlatformwordpress
Accesspressthemes ≫ Unicon Lite Version1.2.6 SwPlatformwordpress
Accesspressthemes ≫ Vmag Version1.2.7 SwPlatformwordpress
Accesspressthemes ≫ Vmagazine Lite Version1.3.5 SwPlatformwordpress
Accesspressthemes ≫ Vmagazine News Version1.0.5 SwPlatformwordpress
Accesspressthemes ≫ Wp 1 Slider Version1.2.9 SwPlatformwordpress
Accesspressthemes ≫ Wp Blog Manager Lite Version1.1.0 SwPlatformwordpress
Accesspressthemes ≫ Wp Comment Designer Lite Version2.0.3 SwPlatformwordpress
Accesspressthemes ≫ Wp Cookie User Info Version1.0.7 SwPlatformwordpress
Accesspressthemes ≫ Wp Floating Menu Version1.4.4 SwPlatformwordpress
Accesspressthemes ≫ Wp Media Manager Lite Version1.1.2 SwPlatformwordpress
Accesspressthemes ≫ Wp Menu Icons Lite SwPlatformwordpress Version < 1.0.9
Accesspressthemes ≫ Wp Popup Banners Version1.2.3 SwPlatformwordpress
Accesspressthemes ≫ Wp Popup Lite Version1.0.8 SwPlatformwordpress
Accesspressthemes ≫ Wp Product Gallery Lite Version1.1.1 SwPlatformwordpress
Accesspressthemes ≫ Wp Tfeed Version1.6.7 SwPlatformwordpress
Accesspressthemes ≫ Zigcy Baby Version1.0.6 SwPlatformwordpress
Accesspressthemes ≫ Zigcy Cosmetics Version1.0.5 SwPlatformwordpress
Accesspressthemes ≫ Zigcy Lite Version2.0.9 SwPlatformwordpress
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.69% | 0.909 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
CWE-912 Hidden Functionality
The product contains functionality that is not documented, not part of the specification, and not accessible through an interface or command sequence that is obvious to the product's users or administrators.