WP Store

Vulnerabilities 5Slug wp-storeLatest version 1.2.0WordPress.org →

Minimum safe version

1.2.0

Update to 1.2.0 or later to address 2 fixable vulnerabilities

Latest available1.2.0 Affected up to1.1.9 ⚠ 2 vulnerabilities have no fix
N/A
2022-01-11< 1.2.0

AccessPress Themes and Plugin <= Various Versions - Cross-Site Request Forgery

Wordfence
N/A Unfixed
2022-01-24≤ 1.1.9

WordPress WP Store theme <= 1.1.9 - Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation

Patchstack
N/A Unfixed
2022-01-28≤ 1.1.9

WordPress WP Store theme <= 1.1.9 - Authenticated Arbitrary Plugin Activation/Deactivation vulnerability

Patchstack
High 8.8
2021-12-24≤ 1.1.9

WordPress WP Store theme <= 1.1.9 - Arbitrary File Upload vulnerability

PatchstackCVEWordfence