Skip to main content

Bingle

1 CVEs product

Monthly

CVE-2021-39317 HIGH POC PATCH This Week

A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

WordPress PHP Authentication Bypass Access Demo Importer Accesspress Lite +41
NVD
CVSS 3.1
8.8
EPSS
1.7%
EPSS 2% CVSS 8.8
HIGH POC PATCH This Week

A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

WordPress PHP Authentication Bypass +43
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy