VYPR

Header Enhancement

by WordPress

CVEs (1)

  • CVE-2021-24752MedOct 18, 2021
    risk 0.37cvss 5.7epss 0.00

    Multiple Plugins from the CatchThemes vendor do not perform capability and CSRF checks in the ctp_switch AJAX action, which could allow any authenticated users, such as Subscriber to change the Essential Widgets WordPress plugin before 1.9, To Top WordPress plugin before 2.3,…