Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total471
Critical68
High135
Medium268
Reset
Showing 441-460 of 471 records
Threat Entry Updated 2024-11-21

CVE-2022-0440 - Catch Themes Demo Import

The Catch Themes Demo Import WordPress plugin before 2.1.1 does not validate one of the file to be imported, which could allow high privivilege admin to upload an arbitrary PHP file and gain RCE even in the case of an hardened blog (ie DISALLOW_UNFILTERED_HTML, DISALLOW_FILE_EDIT and DISALLOW_FILE_MODS constants set to true)

THEME Catch Themes Demo Import

CVE-2022-0440

HIGH CVSS 7.2 2022-03-07
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24867 - Everest Admin Theme Lite

Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were updated or removed to avoid any confusion

THEME Everest Admin Theme Lite

CVE-2021-24867

CRITICAL CVSS 9.8 2022-02-21
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24840 - Before 3 Theme

The Squaretype WordPress theme before 3.0.4 allows unauthenticated users to manipulate the query_vars used to retrieve the posts to display in one of its REST endpoint, without any validation. As a result, private and scheduled posts could be retrieved via a crafted request.

THEME Before 3

CVE-2021-24840

MEDIUM CVSS 5.3 2021-11-08
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-39352 - Catch Themes Demo Import

The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions up to and including 1.7, due to insufficient file type validation. This makes it possible for an attacker with administrative privileges to upload malicious files that can be used to achieve remote code execution.

THEME Catch Themes Demo Import

CVE-2021-39352

HIGH CVSS 7.2 2021-10-21
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24752 - Catch Themes Demo Import

Multiple Plugins from the CatchThemes vendor do not perform capability and CSRF checks in the ctp_switch AJAX action, which could allow any authenticated users, such as Subscriber to change the Essential Widgets WordPress plugin before 1.9, To Top WordPress plugin before 2.3, Header Enhancement WordPress plugin before 1.5, Generate Child Theme WordPress plugin before 1.6, Essential Content Types WordPress plugin before 1.9, Catch Web Tools WordPress plugin before 2.7, Catch Under Construction WordPress plugin before 1.4, Catch Themes Demo Import WordPress plugin before 1.6, Catch Sticky Menu WordPress plugin before…

THEME Catch Themes Demo Import

CVE-2021-24752

MEDIUM CVSS 5.7 2021-10-18
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24719 - Enfold Enfold Theme

The Enfold Enfold WordPress theme before 4.8.4 was vulnerable to Reflected Cross-Site Scripting (XSS). The vulnerability is present on Enfold versions previous than 4.8.4 which use Avia Page Builder.

THEME Enfold Enfold

CVE-2021-24719

MEDIUM CVSS 6.1 2021-10-11
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24499 - Before 2 Theme

The Workreap WordPress theme before 2.2.2 AJAX actions workreap_award_temp_file_uploader and workreap_temp_file_uploader did not perform nonce checks, or validate that the request is from a valid user in any other way. The endpoints allowed for uploading arbitrary files to the uploads/workreap-temp directory. Uploaded files were neither sanitized nor validated, allowing an unauthenticated visitor to upload executable code such as php scripts.

THEME Before 2

CVE-2021-24499

CRITICAL CVSS 9.8 2021-08-09
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24501 - Before 2 Theme

The Workreap WordPress theme before 2.2.2 had several AJAX actions missing authorization checks to verify that a user was authorized to perform critical operations such as modifying or deleting objects. This allowed a logged in user to modify or delete objects belonging to other users on the site.

THEME Before 2

CVE-2021-24501

HIGH CVSS 8.1 2021-08-09
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24500 - Several Ajax Actions Available In The Workreap Theme

Several AJAX actions available in the Workreap WordPress theme before 2.2.2 lacked CSRF protections, as well as allowing insecure direct object references that were not validated. This allows an attacker to trick a logged in user to submit a POST request to the vulnerable site, potentially modifying or deleting arbitrary objects on the target site.

THEME Several Ajax Actions Available In The Workreap

CVE-2021-24500

HIGH CVSS 8.1 2021-08-09
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24304 - Before 5 Theme

The Newsmag WordPress theme before 5.0 does not sanitise the td_block_id parameter in its td_ajax_block AJAX action, leading to an unauthenticated Reflected Cross-site Scripting (XSS) vulnerability.

THEME Before 5

CVE-2021-24304

MEDIUM CVSS 6.1 2021-08-09
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24472 - Before 3 Theme

The OnAir2 WordPress theme before 3.9.9.2 and QT KenthaRadio WordPress plugin before 2.0.2 have exposed proxy functionality to unauthenticated users, sending requests to this proxy functionality will have the web server fetch and display the content from any URI, this would allow for SSRF (Server Side Request Forgery) and RFI (Remote File Inclusion) vulnerabilities on the website.

THEME Before 3

CVE-2021-24472

CRITICAL CVSS 9.8 2021-08-02
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24407 - Before 5 Theme

The Jannah WordPress theme before 5.4.5 did not properly sanitize the 'query' POST parameter in its tie_ajax_search AJAX action, leading to a Reflected Cross-site Scripting (XSS) vulnerability.

THEME Before 5

CVE-2021-24407

MEDIUM CVSS 6.1 2021-07-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24389 - Used In The Foodbakery Theme

The WP Foodbakery WordPress plugin before 2.2, used in the FoodBakery WordPress theme before 2.2 did not properly sanitize the foodbakery_radius parameter before outputting it back in the response, leading to an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability.

THEME Used In The Foodbakery

CVE-2021-24389

MEDIUM CVSS 6.1 2021-07-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24375 - View Ajax Handlers Of The Motor Theme

Lack of authentication or validation in motor_load_more, motor_gallery_load_more, motor_quick_view and motor_project_quick_view AJAX handlers of the Motor WordPress theme before 3.1.0 allows an unauthenticated attacker access to arbitrary files in the server file system, and to execute arbitrary php scripts found on the server file system. We found no vulnerability for uploading files with this theme, so any scripts to be executed must already be on the server file system.

THEME View Ajax Handlers Of The Motor

CVE-2021-24375

CRITICAL CVSS 9.8 2021-07-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24387 - Wp Pro Real Estate 7 Theme

The WP Pro Real Estate 7 WordPress theme before 3.1.1 did not properly sanitise the ct_community parameter in its search listing page before outputting it back in it, leading to a reflected Cross-Site Scripting which can be triggered in both unauthenticated or authenticated user context

THEME Wp Pro Real Estate 7

CVE-2021-24387

MEDIUM CVSS 6.1 2021-07-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24364 - Before 5 Theme

The Jannah WordPress theme before 5.4.4 did not properly sanitize the options JSON parameter in its tie_get_user_weather AJAX action before outputting it back in the page, leading to a Reflected Cross-Site Scripting (XSS) vulnerability.

THEME Before 5

CVE-2021-24364

MEDIUM CVSS 6.1 2021-06-21
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24342 - Before 8 Theme

The JNews WordPress theme before 8.0.6 did not sanitise the cat_id parameter in the POST request /?ajax-request=jnews (with action=jnews_build_mega_category_*), leading to a Reflected Cross-Site Scripting (XSS) issue.

THEME Before 8

CVE-2021-24342

MEDIUM CVSS 6.1 2021-06-07
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24321 - Before 1 Theme

The Bello - Directory & Listing WordPress theme before 1.6.0 did not sanitise the bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, listing_list_view and bt_bb_listing_field_my_lat parameters before using them in a SQL statement, leading to SQL Injection issues

THEME Before 1

CVE-2021-24321

CRITICAL CVSS 9.8 2021-06-01
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24318 - Before 1 Theme

The Listeo WordPress theme before 1.6.11 did not ensure that the Post/Page and Booking to delete belong to the user making the request, allowing any authenticated users to delete arbitrary page/post and booking via an IDOR vector.

THEME Before 1

CVE-2021-24318

MEDIUM CVSS 6.5 2021-06-01
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2021-24335 - Auto Mechanic Theme

The Car Repair Services & Auto Mechanic WordPress theme before 4.0 did not properly sanitise its serviceestimatekey search parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting issue

THEME Auto Mechanic

CVE-2021-24335

MEDIUM CVSS 6.1 2021-06-01
Open Full Technical Breakdown
Scroll to top