Access Demo Importer Security Vulnerabilities and Issues — Access Demo Importer CVE List

Lucene search

AccesspressthemesAccess Demo Importer

3 matches found

CVE•added 2022/04/18 5:15 p.m.•74 views

CVE-2022-23975

Cross-Site Request Forgery (CSRF) in Access Demo Importer <= 1.0.7 on WordPress allows an attacker to activate any installed plugin.

6.5CVSS6.5AI score0.00184EPSS

CVE•added 2022/04/18 5:15 p.m.•71 views

CVE-2022-23976

Cross-Site Request Forgery (CSRF) in Access Demo Importer <= 1.0.7 on WordPress allows an attacker to reset all data (posts / pages / media).

8.1CVSS8.2AI score0.00212EPSS

CVE•added 2021/10/11 4:15 p.m.•70 views

CVE-2021-39317

A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callback function found in the /demo-functions.php file or /welcome...

8.8CVSS8.5AI score0.00645EPSS