CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-23975 – WordPress Access Demo Importer plugin <= 1.0.7 - Cross-Site Request Forgery (CSRF) vulnerability leading to Arbitrary Plugin Activation
https://notcve.org/view.php?id=CVE-2022-23975
11 Jan 2022 — Cross-Site Request Forgery (CSRF) in Access Demo Importer <= 1.0.7 on WordPress allows an attacker to activate any installed plugin. Una vulnerabilidad de tipo Cross-Site Request Forgery (CSRF) en Access Demo Importer versiones anteriores a 1.0.7 incluyéndola en WordPress, permite a un atacante activar cualquier plugin instalado A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to unauthorized plugin deactivation and activation via the plugin_activation_callback ... • https://patchstack.com/database/vulnerability/access-demo-importer/wordpress-access-demo-importer-plugin-1-0-7-cross-site-request-forgery-csrf-vulnerability-leading-to-arbitrary-plugin-activation • CWE-352: Cross-Site Request Forgery (CSRF) CWE-862: Missing Authorization •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24858 – WP Cookie User Info < 1.0.9 - Admin+ SQL Injection
https://notcve.org/view.php?id=CVE-2021-24858
27 Dec 2021 — The Cookie Notification Plugin for WordPress plugin before 1.0.9 does not sanitise or escape the id GET parameter before using it in a SQL statement, when retrieving the setting to edit in the admin dashboard, leading to an authenticated SQL Injection El plugin Cookie Notification Plugin para WordPress versiones anteriores a 1.0.9, no sanea o escapa del parámetro id GET antes de usarlo en una sentencia SQL, cuando recupera la configuración para editar en el panel de administración, conllevando a una inyecci... • https://wpscan.com/vulnerability/9bd1c040-09cc-4c2d-88c9-8406a653a48b • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 93EXPL: 2CVE-2021-24867 – Backdoored Plugins & Themes from AccessPress Themes
https://notcve.org/view.php?id=CVE-2021-24867
13 Oct 2021 — Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were updated or removed to avoid any confusion Numerosos plugins y temas del proveedor de AccessPress Themes (también se conoce como Access Keys) han sido perjudicados debido a que su sitio web ha sido comprometido. Sólo están afectados los... • https://jetpack.com/2022/01/18/backdoor-found-in-themes-and-plugins-from-accesspress-themes • CWE-912: Hidden Functionality •
CVSS: 8.8EPSS: 0%CPEs: 43EXPL: 1CVE-2021-39317 – AccessPress Themes - Authenticated Malicious File Upload
https://notcve.org/view.php?id=CVE-2021-39317
06 Oct 2021 — A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callback function found in the /demo-functions.php file or /welcome.php file of the affected products. The complete list of affected products and their versions are below: WordPress Plugin: AccessPress Demo Importer <=1.0.6 WordPress Themes: accesspress-basic <= 3.2.1 accesspress... • https://patchstack.com/articles/authenticated-vulnerability-in-unpatched-wordpress-themes • CWE-285: Improper Authorization CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-24143 – AccessPress Social Icons < 1.8.1 - Authenticated SQL Injection
https://notcve.org/view.php?id=CVE-2021-24143
02 Nov 2020 — Unvalidated input in the AccessPress Social Icons plugin, versions before 1.8.1, did not sanitise its widget attribute, allowing accounts with post permission, such as author, to perform SQL injections. Una entrada no comprobada en el plugin AccessPress Social Icons, versiones anteriores a 1.8.1, no saneaba su atributo de widget, permitiendo que cuentas con permiso de publicación, tales como el autor, para llevar a cabo inyecciones SQL • https://wpscan.com/vulnerability/02c5e10c-1ac7-447e-8ae5-b6d251be750b • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2020-25378 – WP Floating Menu <= 1.4.0 - Cross-Site Scripting via id Parameter
https://notcve.org/view.php?id=CVE-2020-25378
24 Aug 2020 — Wordpress Plugin Store / AccessPress Themes WP Floating Menu V1.3.0 is affected by: Cross Site Scripting (XSS) via the id GET parameter. Wordpress Plugin Store / AccessPress Themes WP Floating Menu versión V1.3.0, está afectada por: una vulnerabilidad de tipo Cross Site Scripting (XSS) por medio del parámetro GET id • https://zeroaptitude.com/misha/wordpress-plugin-bug-hunting-part-2 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 20%CPEs: 1EXPL: 3CVE-2017-16949 – AccessPress Anonymous Post Pro <= 3.1.9 - Unauthenticated Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2017-16949
13 Dec 2017 — An issue was discovered in the AccessKeys AccessPress Anonymous Post Pro plugin through 3.1.9 for WordPress. Improper input sanitization allows the attacker to override the settings for allowed file extensions and upload file size, related to inc/cores/file-uploader.php and file-uploader/file-uploader-class.php. This allows the attacker to upload anything they want to the server, as demonstrated by an action=ap_file_upload_action&allowedExtensions[]=php request to /wp-admin/admin-ajax.php that results in a ... • https://www.exploit-db.com/exploits/43324 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-15919 – Ultimate Form Builder Lite <= 1.3.6 - SQL Injection to PHP Object Injection
https://notcve.org/view.php?id=CVE-2017-15919
23 Oct 2017 — The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has SQL Injection, with resultant PHP Object Injection, via wp-admin/admin-ajax.php. El plugin ultimate-form-builder-lite en versiones anteriores a la 1.3.7 para WordPress tiene Inyección SQL, con inyección de objetos PHP como resultado, mediante wp-admin/admin-ajax.php. • http://www.securityfocus.com/bid/101604 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •