Vulnerabilities > Themegrill

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-20	CVE-2024-0679	Missing Authorization vulnerability in Themegrill Colormag The ColorMag theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the plugin_action_callback() function in all versions up to, and including, 3.1.2. network low complexity themegrill CWE-862	6.5
2021-05-05	CVE-2020-36334	Cross-Site Request Forgery (CSRF) vulnerability in Themegrill Demo Importer themegrill-demo-importer before 1.6.3 allows CSRF, as demonstrated by wiping the database. network themegrill CWE-352	6.8
2021-05-05	CVE-2020-36333	Missing Authentication for Critical Function vulnerability in Themegrill Demo Importer themegrill-demo-importer before 1.6.2 does not require authentication for wiping the database, because of a reset_wizard_actions hook. network low complexity themegrill CWE-306	6.4

Vulnerabilities > Themegrill {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Themegrill"}]}