Elegant Pink

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-32371 MEDIUM This Month

Elegant Pink theme versions up to 1.3.3 contain an access control flaw that allows unauthenticated remote attackers to modify data through incorrectly configured authorization checks. The vulnerability enables integrity compromise without requiring authentication, though no patch is currently available.

Authentication Bypass Elegant Pink
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2024-37426 MEDIUM Monitor

Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Elegant Pink allows Cross Site Request Forgery.3.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Elegant Pink
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2026-32371
EPSS 0% CVSS 5.3
MEDIUM This Month

Elegant Pink theme versions up to 1.3.3 contain an access control flaw that allows unauthenticated remote attackers to modify data through incorrectly configured authorization checks. The vulnerability enables integrity compromise without requiring authentication, though no patch is currently available.

Authentication Bypass Elegant Pink
NVD
CVE-2024-37426
EPSS 0% CVSS 4.3
MEDIUM Monitor

Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Elegant Pink allows Cross Site Request Forgery.3.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Elegant Pink
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy