CVE-2013-20002

2021-06-1715:16:28

mitre

www.cve.org

9.9 High

AI Score

Confidence

High

0.028 Low

EPSS

Percentile

90.7%

JSON

Elemin allows remote attackers to upload and execute arbitrary PHP code via the Themify framework (before 1.2.2) wp-content/themes/elemin/themify/themify-ajax.php file.

References

en.0day.today/exploit/22090

packetstormsecurity.com/files/124149/WordPress-Elemin-Shell-Upload.html

themify.me/blog/updated-themify-framework-to-fix-the-vulnerability

themify.me/blog/urgent-vulnerability-found-in-themify-framework-please-read