VYPR

XootiX Framework

by WordPress

CVEs (1)

  • CVE-2024-5324HigJun 6, 2024
    risk 0.50cvss 8.8epss 0.02

    Multiple plugins for WordPress utilizing the XootiX Framework are vulnerable to unauthorized modification of data due to a missing capability check on the 'import_settings' function in various versions. This makes it possible for authenticated attackers, with Subscriber-level…