VYPR

Beyot WordPress Real Estate Theme

by WordPress

CVEs (2)

  • CVE-2024-13418HigMay 2, 2025
    risk 0.57cvss 8.8epss 0.01

    Multiple plugins and/or themes for WordPress are vulnerable to Arbitrary File Uploads due to a missing capability check on the ajaxUploadFonts() function in various versions. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload…

  • CVE-2024-13420MedMay 2, 2025
    risk 0.28cvss 4.3epss 0.00

    Multiple plugins and/or themes for WordPress are vulnerable to unauthorized access due to a missing capability check on several AJAX actions like 'gsf_reset_section_options', 'gsf_reset_section_options', 'gsf_create_preset_options' and more in various versions. This makes it…