Security Advisory

CVE-2022-1654

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-06-13 13:16:09

Last updated 2025-01-31 18:53:07

Assigner Wordfence

State PUBLISHED

Description

Jupiter Theme <= 6.10.1 and JupiterX Core Plugin <= 2.0.7 allow any authenticated attacker, including a subscriber or customer-level attacker, to gain administrative privileges via the "abb_uninstall_template" (both) and "jupiterx_core_cp_uninstall_template" (JupiterX Core Only) AJAX actions

← Browse all CVEs View on cve.org ↗