CVE-2020-36708
Epsilon Framework Themes (Various Versions) - Function Injection
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The following themes for WordPress are vulnerable to Function Injections in versions up to and including Shapely <= 1.2.7, NewsMag <= 2.4.1, Activello <= 1.4.0, Illdy <= 2.1.4, Allegiant <= 1.2.2, Newspaper X <= 1.3.1, Pixova Lite <= 2.0.5, Brilliance <= 1.2.7, MedZone Lite <= 1.2.4, Regina Lite <= 2.0.4, Transcend <= 1.1.8, Affluent <= 1.1.0, Bonkers <= 1.0.4, Antreas <= 1.0.2, Sparkling <= 2.4.8, and NatureMag Lite <= 1.0.4. This is due to epsilon_framework_ajax_action. This makes it possible for unauthenticated attackers to call functions and achieve remote code execution.
*Credits:
Jerome Bruandet
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-10-01 CVE Published
- 2023-06-06 CVE Reserved
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- 2024-09-11 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| https://wpscan.com/vulnerability/bec52a5b-c892-4763-a962-05da7100eca5 | Third Party Advisory | |
| https://www.wordfence.com/blog/2020/11/large-scale-attacks-target-epsilon-framework-themes | Third Party Advisory | |
| https://www.wordfence.com/threat-intel/vulnerabilities/id/5b75c322-539d-44e9-8f26-5ff929874b67?source=cve | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Colorlib Search vendor "Colorlib" | Activello Search vendor "Colorlib" for product "Activello" | < 1.4.2 Search vendor "Colorlib" for product "Activello" and version " < 1.4.2" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Bonkers Search vendor "Colorlib" for product "Bonkers" | < 1.0.6 Search vendor "Colorlib" for product "Bonkers" and version " < 1.0.6" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Illdy Search vendor "Colorlib" for product "Illdy" | < 2.1.7 Search vendor "Colorlib" for product "Illdy" and version " < 2.1.7" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Newspaper X Search vendor "Colorlib" for product "Newspaper X" | < 1.3.2 Search vendor "Colorlib" for product "Newspaper X" and version " < 1.3.2" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Pixova Lite Search vendor "Colorlib" for product "Pixova Lite" | < 2.0.7 Search vendor "Colorlib" for product "Pixova Lite" and version " < 2.0.7" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Shapely Search vendor "Colorlib" for product "Shapely" | < 1.2.9 Search vendor "Colorlib" for product "Shapely" and version " < 1.2.9" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Sparklinkg Search vendor "Colorlib" for product "Sparklinkg" | <= 2.4.8 Search vendor "Colorlib" for product "Sparklinkg" and version " <= 2.4.8" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Affluent Search vendor "Cpothemes" for product "Affluent" | < 1.1.2 Search vendor "Cpothemes" for product "Affluent" and version " < 1.1.2" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Allegiant Search vendor "Cpothemes" for product "Allegiant" | < 1.2.6 Search vendor "Cpothemes" for product "Allegiant" and version " < 1.2.6" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Brilliance Search vendor "Cpothemes" for product "Brilliance" | < 1.3.0 Search vendor "Cpothemes" for product "Brilliance" and version " < 1.3.0" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Transcend Search vendor "Cpothemes" for product "Transcend" | < 1.2.0 Search vendor "Cpothemes" for product "Transcend" and version " < 1.2.0" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Antreas Search vendor "Machothemes" for product "Antreas" | < 1.0.7 Search vendor "Machothemes" for product "Antreas" and version " < 1.0.7" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Medzone Lite Search vendor "Machothemes" for product "Medzone Lite" | < 1.2.6 Search vendor "Machothemes" for product "Medzone Lite" and version " < 1.2.6" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Naturemag Lite Search vendor "Machothemes" for product "Naturemag Lite" | <= 1.0.4 Search vendor "Machothemes" for product "Naturemag Lite" and version " <= 1.0.4" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Newsmag Search vendor "Machothemes" for product "Newsmag" | < 2.4.2 Search vendor "Machothemes" for product "Newsmag" and version " < 2.4.2" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Regina Lite Search vendor "Machothemes" for product "Regina Lite" | < 2.0.6 Search vendor "Machothemes" for product "Regina Lite" and version " < 2.0.6" | wordpress |
Affected
| ||||||