VYPR
Unrated severityNVD Advisory· Published Jun 19, 2024· Updated Apr 28, 2026

WordPress Avada theme <= 7.11.1 - Auth. Unrestricted Zip Extraction vulnerability

CVE-2023-39312

Description

Missing Authorization vulnerability in ThemeFusion Avada.This issue affects Avada: from n/a through 7.11.1.

Affected products

2
  • Theme Fusion/Avadallm-fuzzy2 versions
    <=7.11.1+ 1 more
    • (no CPE)range: <=7.11.1
    • (no CPE)range: n/a

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.