VYPR

Campress

by WordPress

CVEs (1)

  • CVE-2024-10763CriFeb 13, 2025
    risk 0.64cvss 9.8epss 0.04

    The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campress_woocommerce_get_ajax_products' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server,…