jpress v4.2.0 admin panel provides a function through which attackers can modify the template and inject some malicious code. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
RCE
Code Injection
Jpress
NVD
GitHub
VulDB
CVSS 3.1
8.8
EPSS
1.7%