Wp Child Theme Generator
by WordPress
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-47873 | Cri | 0.60 | 9.1 | 0.02 | Mar 26, 2024 | Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme Generator.This issue affects WP Child Theme Generator: from n/a through 1.0.9. | ||
| CVE-2024-3610 | Med | 0.34 | 5.3 | 0.01 | Jun 21, 2024 | The WP Child Theme Generator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wctg_easy_child_theme() function in all versions up to, and including, 1.1.1. This makes it possible for unauthenticated attackers to… | ||
| CVE-2021-24982 | 0.00 | — | 0.01 | Mar 14, 2022 | The Child Theme Generator WordPress plugin through 2.2.7 does not sanitise escape the parade parameter before outputting it back, leading to a Reflected Cross-Site Scripting in the admin dashboard | |||
| CVE-2019-15822 | 0.00 | — | 0.03 | Aug 30, 2019 | The wps-child-theme-generator plugin before 1.2 for WordPress has classes/helpers.php directory traversal. |
- risk 0.60cvss 9.1epss 0.02
Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme Generator.This issue affects WP Child Theme Generator: from n/a through 1.0.9.
- risk 0.34cvss 5.3epss 0.01
The WP Child Theme Generator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wctg_easy_child_theme() function in all versions up to, and including, 1.1.1. This makes it possible for unauthenticated attackers to…
- CVE-2021-24982Mar 14, 2022risk 0.00cvss —epss 0.01
The Child Theme Generator WordPress plugin through 2.2.7 does not sanitise escape the parade parameter before outputting it back, leading to a Reflected Cross-Site Scripting in the admin dashboard
- CVE-2019-15822Aug 30, 2019risk 0.00cvss —epss 0.03
The wps-child-theme-generator plugin before 1.2 for WordPress has classes/helpers.php directory traversal.