Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Gutenberg Template Library & Redux Framework Security Vulnerabilities

cve
cve

CVE-2021-38312

The Gutenberg Template Library & Redux Framework plugin <= 4.2.11 for WordPress used an incorrect authorization check in the REST API endpoints registered under the โ€œredux/v1/templates/โ€ REST Route in โ€œredux-templates/classes/class-api.phpโ€. The permissions_callback used in this file only checke...

7.1CVSS

5.7AI Score

0.001EPSS

2021-09-02 05:15 PM
43
cve
cve

CVE-2021-38314

The Gutenberg Template Library & Redux Framework plugin <= 4.2.11 for WordPress registered several AJAX actions available to unauthenticated users in the includes function in redux-core/class-redux-core.php that were unique to a given site but deterministic and predictable given that they were b...

5.3CVSS

5.3AI Score

0.002EPSS

2021-09-02 05:15 PM
110
7
cve
cve

CVE-2024-6828

The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due to missing authorization and capability checks on the Redux_Color_Scheme_Import function in versions 4.4.12 to 4.4.17. This makes it possible for unauthenticated attackers to upload JSON files, which can...

7.2CVSS

6.9AI Score

0.001EPSS

2024-07-23 02:15 AM
28