VYPR

Total

by Hasthemes

CVEs (2)

  • CVE-2023-27456MedDec 13, 2024
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in HashThemes Total allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Total: from n/a through 2.1.19.

  • CVE-2024-1771MedMar 6, 2024
    risk 0.28cvss 4.3epss 0.00

    The Total theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the total_order_sections() function in all versions up to, and including, 2.1.59. This makes it possible for authenticated attackers, with subscriber-level…