Vulnerabilidades en MuffinGroup

21 resultados

CVE-2022-3861HIGHBetheme <= 26.5.1.4 - Authenticated (Subscriber+) PHP Object InjectionEPSS 2.0%CVE-2022-3747HIGHBecustom <= 1.0.5.2 - Cross-Site Request ForgeryEPSS 0.8%CVE-2024-2694HIGHBetheme <= 27.5.6 - Authenticated (Contributor+) PHP Object InjectionEPSS 0.6%CVE-2022-45077MEDIUMWordPress Betheme theme <= 26.5.1.4 - Auth. PHP Object Injection vulnerabilityEPSS 0.6%CVE-2026-6261HIGHBetheme <= 28.4 - Authenticated (Author+) Arbitrary File Upload to Remote Code Execution via Icon Pack UploadEPSS 0.6%CVE-2022-45356MEDIUMWordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2022-45353MEDIUMWordPress Betheme theme <= 26.6.1 is vulnerable to Broken Access ControlEPSS 0.5%CVE-2022-45351MEDIUMWordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2022-45352MEDIUMWordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2022-45349MEDIUMWordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2022-45363MEDIUMWordPress Betheme premium theme <= 26.6.1 - Auth. Stored Cross-Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2023-29101HIGHWordPress Betheme Theme <= 26.7.5 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-39998HIGHWordPress BeTheme theme <= 27.1.1 - Author+ Broken Access Control vulnerabilityEPSS 0.4%CVE-2026-6262MEDIUMBetheme <= 28.4 - Authenticated (Contributor+) Arbitrary File Deletion via 'mfn-icon-upload'EPSS 0.3%CVE-2024-5567MEDIUMBetheme | Responsive Multipurpose WordPress & WooCommerce Theme <= 27.5.5 - Authenticated (Author+) Stored Cross-Site Scripting via SVG FileEPSS 0.3%CVE-2024-3998MEDIUMBetheme | Responsive Multipurpose WordPress & WooCommerce Theme <= 27.5.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.2%CVE-2025-0450MEDIUMBetheme <= 27.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JSEPSS 0.2%CVE-2025-3077MEDIUMBetheme <= 28.0.3 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-7399MEDIUMBetheme <= 28.1.3 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-9371MEDIUMBetheme <= 28.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'page_title'EPSS 0.2%

← anteriorpágina 1 / 2siguiente →