Medium 6.5
2022-04-18< 1.2.8
CVE-2022-23975
VMag
Minimum safe version
1.2.8
Update to 1.2.8 or later to address 3 fixable vulnerabilities
Latest available1.2.8 ✓Affected up to1.2.7 ⚠⚠ 2 vulnerabilities have no fix
N/A
2022-01-11< 1.2.8
AccessPress Themes and Plugin <= Various Versions - Cross-Site Request Forgery
N/A Unfixed
2022-01-24≤ 1.2.7
WordPress VMag theme <= 1.2.7 - Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation
N/A Unfixed
2022-01-28≤ 1.2.7
WordPress VMag theme <= 1.2.7 - Authenticated Arbitrary Plugin Activation/Deactivation vulnerability
High 8.8
2021-11-28≤ 1.2.7
WordPress VMag theme <= 1.2.7 - Arbitrary File Upload vulnerability
Critical 9.8
2022-02-21< 1.2.8
CVE-2021-24867