Medium 6.5
2022-04-18< 1.3.6
CVE-2022-23975
Enlighten
Minimum safe version
1.3.6
Update to 1.3.6 or later to address 3 fixable vulnerabilities
Latest available1.3.6 ✓Affected up to1.3.5 ⚠⚠ 2 vulnerabilities have no fix
N/A
2022-01-11< 1.3.6
AccessPress Themes and Plugin <= Various Versions - Cross-Site Request Forgery
N/A Unfixed
2022-01-24≤ 1.3.5
WordPress Enlighten theme <= 1.3.5 - Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation
N/A Unfixed
2022-01-28≤ 1.3.5
WordPress Enlighten theme <= 1.3.5 - Authenticated Arbitrary Plugin Activation/Deactivation vulnerability
High 8.8
2021-11-28≤ 1.3.5
WordPress Enlighten theme <= 1.3.5 - Arbitrary File Upload vulnerability
Critical 9.8
2022-02-21< 1.3.6
CVE-2021-24867