Vulnerabilities > Wpmoose > Yuki
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-28 | CVE-2024-1388 | Missing Authorization vulnerability in Wpmoose Yuki The Yuki theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the reset_customizer_options() function in all versions up to, and including, 1.3.13. | 4.3 |
| 2024-02-28 | CVE-2024-1943 | Cross-Site Request Forgery (CSRF) vulnerability in Wpmoose Yuki The Yuki theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including 1.3.14. | 4.3 |