CVE-2020-36708 — CRITICAL (9.8)

Q: How severe is CVE-2020-36708?

CVE-2020-36708 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2020-36708?

Check the references section above for vendor advisories and patch information. Affected products include: Colorlib Activello, Colorlib Bonkers, Colorlib Illdy, Colorlib Newspaper X, Colorlib Pixova Lite.

Vulnerability Description

The following themes for WordPress are vulnerable to Function Injections in versions up to and including Shapely <= 1.2.7, NewsMag <= 2.4.1, Activello <= 1.4.0, Illdy <= 2.1.4, Allegiant <= 1.2.2, Newspaper X <= 1.3.1, Pixova Lite <= 2.0.5, Brilliance <= 1.2.7, MedZone Lite <= 1.2.4, Regina Lite <= 2.0.4, Transcend <= 1.1.8, Affluent <= 1.1.0, Bonkers <= 1.0.4, Antreas <= 1.0.2, Sparkling <= 2.4.8, and NatureMag Lite <= 1.0.4. This is due to epsilon_framework_ajax_action. This makes it possible for unauthenticated attackers to call functions and achieve remote code execution.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Colorlib	Activello	< 1.4.2
Colorlib	Bonkers	< 1.0.6
Colorlib	Illdy	< 2.1.7
Colorlib	Newspaper X	< 1.3.2
Colorlib	Pixova Lite	< 2.0.7
Colorlib	Shapely	< 1.2.9
Colorlib	Sparklinkg	<= 2.4.8
Cpothemes	Affluent	< 1.1.2
Cpothemes	Allegiant	< 1.2.6
Cpothemes	Brilliance	< 1.3.0
Cpothemes	Transcend	< 1.2.0
Machothemes	Antreas	< 1.0.7
Machothemes	Medzone Lite	< 1.2.6
Machothemes	Naturemag Lite	<= 1.0.4
Machothemes	Newsmag	< 2.4.2
Machothemes	Regina Lite	< 2.0.6

Related Weaknesses (CWE)

CWE-94

References

https://blog.nintechnet.com/unauthenticated-function-injection-vulnerability-fixExploitThird Party Advisory
https://blog.nintechnet.com/unauthenticated-function-injection-vulnerability-in-ExploitThird Party Advisory
https://wpscan.com/vulnerability/bec52a5b-c892-4763-a962-05da7100eca5Third Party Advisory
https://www.wordfence.com/blog/2020/11/large-scale-attacks-target-epsilon-framewThird Party Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/5b75c322-539d-44e9-8f2Third Party Advisory
https://blog.nintechnet.com/unauthenticated-function-injection-vulnerability-fixExploitThird Party Advisory
https://blog.nintechnet.com/unauthenticated-function-injection-vulnerability-in-ExploitThird Party Advisory
https://wpscan.com/vulnerability/bec52a5b-c892-4763-a962-05da7100eca5Third Party Advisory
https://www.wordfence.com/blog/2020/11/large-scale-attacks-target-epsilon-framewThird Party Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/5b75c322-539d-44e9-8f2Third Party Advisory

FAQ

What is CVE-2020-36708?

CVE-2020-36708 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The following themes for WordPress are vulnerable to Function Injections in versions up to and including Shapely <= 1.2.7, NewsMag <= 2.4.1, Activello <= 1.4.0, Illdy <= 2.1.4, Allegiant <= 1.2.2, New...

How severe is CVE-2020-36708?

CVE-2020-36708 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2020-36708?

Check the references section above for vendor advisories and patch information. Affected products include: Colorlib Activello, Colorlib Bonkers, Colorlib Illdy, Colorlib Newspaper X, Colorlib Pixova Lite.