CVE-2020-36721
Epsilon Framework Themes (Various Versions) - Unauthenticated Plugin Activation/Deactivation
Severity Score
6.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Brilliance <= 1.2.7, Activello <= 1.4.0, and Newspaper X <= 1.3.1 themes for WordPress are vulnerable to Plugin Activation/Deactivation. This is due to the 'activello_activate_plugin' and 'activello_deactivate_plugin' functions in the 'inc/welcome-screen/class-activello-welcome.php' file missing capability and security checks/nonces. This makes it possible for unauthenticated attackers to activate and deactivate arbitrary plugins installed on a vulnerable site.
*Credits:
Jerome Bruandet
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-10-01 CVE Published
- 2023-06-06 CVE Reserved
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- 2024-09-11 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-284: Improper Access Control
- CWE-862: Missing Authorization
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| https://wordpress.org/themes/activello | Product | |
| https://wordpress.org/themes/brilliance | Product | |
| https://wordpress.org/themes/newspaper-x | Product | |
| https://www.wordfence.com/threat-intel/vulnerabilities/id/a9e4e989-8e55-4ea7-8f42-9f67cfab1168?source=cve | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://blog.nintechnet.com/unauthenticated-function-injection-vulnerability-fixed-in-15-wordpress-themes | 2024-08-04 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Colorlib Search vendor "Colorlib" | Activello Search vendor "Colorlib" for product "Activello" | < 1.4.2 Search vendor "Colorlib" for product "Activello" and version " < 1.4.2" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Bonkers Search vendor "Colorlib" for product "Bonkers" | < 1.0.6 Search vendor "Colorlib" for product "Bonkers" and version " < 1.0.6" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Illdy Search vendor "Colorlib" for product "Illdy" | < 2.1.7 Search vendor "Colorlib" for product "Illdy" and version " < 2.1.7" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Newspaper X Search vendor "Colorlib" for product "Newspaper X" | < 1.3.2 Search vendor "Colorlib" for product "Newspaper X" and version " < 1.3.2" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Pixova Lite Search vendor "Colorlib" for product "Pixova Lite" | < 2.0.7 Search vendor "Colorlib" for product "Pixova Lite" and version " < 2.0.7" | wordpress |
Affected
| ||||||
| Colorlib Search vendor "Colorlib" | Shapely Search vendor "Colorlib" for product "Shapely" | < 1.2.9 Search vendor "Colorlib" for product "Shapely" and version " < 1.2.9" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Affluent Search vendor "Cpothemes" for product "Affluent" | < 1.1.2 Search vendor "Cpothemes" for product "Affluent" and version " < 1.1.2" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Allegiant Search vendor "Cpothemes" for product "Allegiant" | < 1.2.6 Search vendor "Cpothemes" for product "Allegiant" and version " < 1.2.6" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Brilliance Search vendor "Cpothemes" for product "Brilliance" | < 1.3.0 Search vendor "Cpothemes" for product "Brilliance" and version " < 1.3.0" | wordpress |
Affected
| ||||||
| Cpothemes Search vendor "Cpothemes" | Transcend Search vendor "Cpothemes" for product "Transcend" | < 1.2.0 Search vendor "Cpothemes" for product "Transcend" and version " < 1.2.0" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Antreas Search vendor "Machothemes" for product "Antreas" | < 1.0.7 Search vendor "Machothemes" for product "Antreas" and version " < 1.0.7" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Medzone Lite Search vendor "Machothemes" for product "Medzone Lite" | < 1.2.6 Search vendor "Machothemes" for product "Medzone Lite" and version " < 1.2.6" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Naturemag Lite Search vendor "Machothemes" for product "Naturemag Lite" | <= 1.0.4 Search vendor "Machothemes" for product "Naturemag Lite" and version " <= 1.0.4" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Newsmag Search vendor "Machothemes" for product "Newsmag" | < 2.4.2 Search vendor "Machothemes" for product "Newsmag" and version " < 2.4.2" | wordpress |
Affected
| ||||||
| Machothemes Search vendor "Machothemes" | Regina Lite Search vendor "Machothemes" for product "Regina Lite" | < 2.0.6 Search vendor "Machothemes" for product "Regina Lite" and version " < 2.0.6" | wordpress |
Affected
| ||||||