Filtered by vendor Themeeditor
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-24154 | 1 Themeeditor | 1 Theme Editor | 2021-04-19 | 4.9 Medium |
| The Theme Editor WordPress plugin before 2.6 did not validate the GET file parameter before passing it to the download_file() function, allowing administrators to download arbitrary files on the web server, such as /etc/passwd | ||||
Page 1 of 1.