WordPress Accesspress Lite theme <= 2.92 - Authenticated Arbitrary Plugin Activation/Deactivation vulnerability

Authenticated Arbitrary Plugin Activation/Deactivation vulnerability discovered by Ex.Mi Patchstack in WordPress Accesspress Lite theme versions = 2.92. Solution Deactivate and delete. The vendor ignores the vulnerability reports, avoids any conversation...

WordPress Accesspress Lite theme <= 2.92 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Lenon Leite in WordPress Accesspress Lite theme versions = 2.92. This theme uses a vulnerable piece of code related to previously identified vulnerability - CVE-2021-39317. Solution Deactivate and delete. The vendor ignores the vulnerability...