VYPR

Accesspress Root

by Accesspress Themes

CVEs (2)

  • CVE-2021-47910MedMay 10, 2026
    risk 0.42cvss 6.4epss 0.00

    AccessPress Social Icons 1.8.2 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by entering JavaScript payloads into the 'icon title' field. Attackers can store XSS payloads like image tags with onerror event…

  • CVE-2021-24867Feb 21, 2022
    risk 0.00cvss epss 0.19

    Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were…