A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callback function found in the /demo-functions.php file or /welcome.php file of the affected products. The complete list of affected products and their versions are below: WordPress Plugin: AccessPress Demo Importer <=1.0.6 WordPress Themes: accesspress-basic <= 3.2.1 accesspress-lite <= 2.92 accesspress-mag <= 2.6.5 accesspress-parallax <= 4.5 accesspress-root <= 2.5 accesspress-store <= 2.4.9 agency-lite <= 1.1.6 arrival <= 1.4.2 bingle <= 1.0.4 bloger <= 1.2.6 brovy <= 1.3 construction-lite <= 1.2.5 doko <= 1.0.27 edict-lite <= 1.1.4 eightlaw-lite <= 2.1.5 eightmedi-lite <= 2.1.8 eight-sec <= 1.1.4 eightstore-lite <= 1.2.5 enlighten <= 1.3.5 fotography <= 2.4.0 opstore <= 1.4.3 parallaxsome <= 1.3.6 punte <= 1.1.2 revolve <= 1.3.1 ripple <= 1.2.0 sakala <= 1.0.4 scrollme <= 2.1.0 storevilla <= 1.4.1 swing-lite <= 1.1.9 the100 <= 1.1.2 the-launcher <= 1.3.2 the-monday <= 1.4.1 ultra-seven <= 1.2.8 uncode-lite <= 1.3.3 vmag <= 1.2.7 vmagazine-lite <= 1.3.5 vmagazine-news <= 1.0.5 wpparallax <= 2.0.6 wp-store <= 1.1.9 zigcy-baby <= 1.0.6 zigcy-cosmetics <= 1.0.5 zigcy-lite <= 2.0.9
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:19
Type | Values Removed | Values Added |
---|---|---|
References | () https://patchstack.com/articles/authenticated-vulnerability-in-unpatched-wordpress-themes/ - Third Party Advisory | |
References | () https://plugins.trac.wordpress.org/changeset/2592642/access-demo-importer/trunk/inc/demo-functions.php - Patch, Third Party Advisory | |
References | () https://plugins.trac.wordpress.org/changeset/2602132/access-demo-importer/trunk/inc/demo-functions.php - Patch, Third Party Advisory | |
References | () https://www.wordfence.com/blog/2021/10/high-severity-vulnerability-patched-in-access-demo-importer-plugin/ - Exploit, Third Party Advisory |
19 Feb 2022, 04:43
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://patchstack.com/articles/authenticated-vulnerability-in-unpatched-wordpress-themes/ - Third Party Advisory | |
CPE | cpe:2.3:a:accesspressthemes:the-monday:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:wpparallax:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:agency-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:eightmedi-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:the100:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:vmagazine-news:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:ripple:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:bingle:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:eight-sec:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:zigcy-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:eightlaw-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:vmag:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:fotography:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:wp-store:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:construction-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:accesspress-basic:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:eightstore-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:accesspress-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:brovy:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:arrival:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:bloger:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:zigcy-baby:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:scrollme:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:zigcy-cosmetics:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:uncode-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:vmagazine-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:sakala:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:the-launcher:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:swing-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:accesspress-mag:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:accesspress-root:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:ultra-seven:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:punte:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:enlighten:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:opstore:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:accesspress-store:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:storevilla:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:edict-lite:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:doko:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:revolve:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:parallaxsome:*:*:*:*:*:wordpress:*:* cpe:2.3:a:accesspressthemes:accesspress-parallax:*:*:*:*:*:wordpress:*:* |
13 Jan 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callback function found in the /demo-functions.php file or /welcome.php file of the affected products. The complete list of affected products and their versions are below: WordPress Plugin: AccessPress Demo Importer <=1.0.6 WordPress Themes: accesspress-basic <= 3.2.1 accesspress-lite <= 2.92 accesspress-mag <= 2.6.5 accesspress-parallax <= 4.5 accesspress-root <= 2.5 accesspress-store <= 2.4.9 agency-lite <= 1.1.6 arrival <= 1.4.2 bingle <= 1.0.4 bloger <= 1.2.6 brovy <= 1.3 construction-lite <= 1.2.5 doko <= 1.0.27 edict-lite <= 1.1.4 eightlaw-lite <= 2.1.5 eightmedi-lite <= 2.1.8 eight-sec <= 1.1.4 eightstore-lite <= 1.2.5 enlighten <= 1.3.5 fotography <= 2.4.0 opstore <= 1.4.3 parallaxsome <= 1.3.6 punte <= 1.1.2 revolve <= 1.3.1 ripple <= 1.2.0 sakala <= 1.0.4 scrollme <= 2.1.0 storevilla <= 1.4.1 swing-lite <= 1.1.9 the100 <= 1.1.2 the-launcher <= 1.3.2 the-monday <= 1.4.1 ultra-seven <= 1.2.8 uncode-lite <= 1.3.3 vmag <= 1.2.7 vmagazine-lite <= 1.3.5 vmagazine-news <= 1.0.5 wpparallax <= 2.0.6 wp-store <= 1.1.9 zigcy-baby <= 1.0.6 zigcy-cosmetics <= 1.0.5 zigcy-lite <= 2.0.9 |
16 Oct 2021, 01:02
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://plugins.trac.wordpress.org/changeset/2602132/access-demo-importer/trunk/inc/demo-functions.php - Patch, Third Party Advisory | |
References | (MISC) https://www.wordfence.com/blog/2021/10/high-severity-vulnerability-patched-in-access-demo-importer-plugin/ - Exploit, Third Party Advisory | |
References | (MISC) https://plugins.trac.wordpress.org/changeset/2592642/access-demo-importer/trunk/inc/demo-functions.php - Patch, Third Party Advisory | |
CWE | CWE-434 | |
CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 8.8 |
CPE | cpe:2.3:a:accesspressthemes:access_demo_importer:*:*:*:*:*:wordpress:*:* |
11 Oct 2021, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-10-11 16:15
Updated : 2024-11-21 06:19
NVD link : CVE-2021-39317
Mitre link : CVE-2021-39317
CVE.ORG link : CVE-2021-39317
JSON object : View
Products Affected
accesspressthemes
- accesspress_basic
- zigcy-cosmetics
- accesspress-root
- wp-store
- the-launcher
- access_demo_importer
- arrival
- zigcy-baby
- brovy
- storevilla
- opstore
- eightlaw-lite
- accesspress-parallax
- doko
- agency-lite
- accesspress-lite
- vmagazine-news
- sakala
- vmagazine-lite
- bingle
- punte
- eight-sec
- accesspress-store
- eightstore-lite
- parallaxsome
- accesspress-mag
- eightmedi-lite
- wpparallax
- swing-lite
- the100
- fotography
- ultra-seven
- the-monday
- construction-lite
- ripple
- bloger
- edict-lite
- zigcy-lite
- revolve
- uncode-lite
- vmag
- enlighten
- scrollme