Wensolutions: >> Wp Child Theme Generator >> 1.0.4 Security Vulnerabilities
The WP Child Theme Generator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wctg_easy_child_theme() function in all versions up to, and including, 1.1.1. This makes it possible for unauthenticated attackers to create a blank child theme and activate it cause the site to whitescreen.
CVSS Score
5.3
EPSS Score
0.003
Published
2024-06-21
Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme Generator.This issue affects WP Child Theme Generator: from n/a through 1.0.9.
CVSS Score
9.1
EPSS Score
0.023
Published
2024-03-26