Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:38 p.m.10 views

CVE-2020-36721

The Brilliance = 1.2.7, Activello = 1.4.0, and Newspaper X = 1.3.1 themes for WordPress are vulnerable to Plugin Activation/Deactivation. This is due to the 'activelloactivateplugin' and 'activellodeactivateplugin' functions in the 'inc/welcome-screen/class-activello-welcome.php' file missing...

6.5CVSS7AI score0.00979EPSS
Exploits1References1
OSV
OSV
added 2023/06/07 2:15 a.m.3 views

CVE-2020-36721

The Brilliance = 1.2.7, Activello = 1.4.0, and Newspaper X = 1.3.1 themes for WordPress are vulnerable to Plugin Activation/Deactivation. This is due to the 'activelloactivateplugin' and 'activellodeactivateplugin' functions in the 'inc/welcome-screen/class-activello-welcome.php' file missing...

6.5CVSS5.9AI score0.00979EPSS
Exploits1References5
Patchstack
Patchstack
added 2023/06/07 12:0 a.m.12 views

WordPress Newspaper X Theme <= 1.3.1 is vulnerable to Broken Access Control

Software Newspaper X Type Theme Vulnerable versions = 1.3.1 Fixed in 1.3.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2020-36721 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 364d88cff362 Credits Jerome Bruandet - NinTechNet...

6.5CVSS6.4AI score0.00979EPSS
Exploits1References3Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2023/06/07 12:0 a.m.5 views

VulnCheck KEV: CVE-2020-36708

The following themes for WordPress are vulnerable to Function Injections in versions up to and including Shapely = 1.2.7, NewsMag = 2.4.1, Activello = 1.4.0, Illdy = 2.1.4, Allegiant = 1.2.2, Newspaper X = 1.3.1, Pixova Lite = 2.0.5, Brilliance = 1.2.7, MedZone Lite = 1.2.4, Regina...

9.8CVSS7.2AI score0.65342EPSS
Exploits1References1
Rows per page
Query Builder