Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2021-24867
- EPSS 6.69%
- Veröffentlicht 21.02.2022 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:53:55
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not....
8.8
CVE-2021-39317
- EPSS 0.65%
- Veröffentlicht 11.10.2021 16:15:07
- Zuletzt bearbeitet 21.11.2024 06:19:13
A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callback function ...
1