VYPR
Vendor

Apusthemes

Products
3
CVEs
4
Across products
5
Status
Private

Products

3

Recent CVEs

4
  • CVE-2024-12213CriFeb 12, 2025
    risk 0.64cvss 9.8epss 0.01

    The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to 2.3.16. This is due to the plugin allowing a user to supply the 'role' field when registering. This makes it possible for unauthenticated attackers to register as an…

  • CVE-2024-12296HigFeb 12, 2025
    risk 0.57cvss 8.8epss 0.00

    The Apus Framework plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'import_page_options' function in all versions up to, and including, 2.4. This makes it possible for…

  • CVE-2023-24381Mar 20, 2023
    risk 0.00cvss epss 0.00

    Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in NsThemes Advanced Social Pixel plugin <= 2.1.1 versions.

  • CVE-2022-4114Jan 2, 2023
    risk 0.00cvss epss 0.00

    The Superio WordPress theme does not sanitise and escape some parameters, which could allow users with a role as low as a subscriber to perform Cross-Site Scripting attacks.