Attacker Value
Unknown
CVE-2021-24867
CVE-2021-24867
(Last updated October 07, 2023) ▾
MITRE ATT&CK
Log in to add MITRE ATT&CK tag
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
Description
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were updated or removed to avoid any confusion
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
Data provided by the National Vulnerability Database (NVD)
Base Score:
9.8 Critical
Impact Score:
5.9
Exploitability Score:
3.9
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
High
Integrity (I):
High
Availability (A):
High
General Information
Vendors
Products
- accessbuddy 1.0.0
- accesspress anonymous post 2.8.0
- accesspress basic 3.2.1
- accesspress custom css 2.0.1
- accesspress custom post type 1.0.8
- accesspress ifeeds 4.0.3
- accesspress lite 2.92
- accesspress mag 2.6.5
- accesspress parallax 4.5
- accesspress ray 1.19.5
- accesspress root 2.5
- accesspress social counter 1.9.1
- accesspress social icons 1.8.2
- accesspress social login lite 3.4.7
- accesspress social share 4.5.5
- accesspress staple 1.9.1
- accesspress store 2.4.9
- agency lite 1.1.6
- ap companion
- ap contact form 1.0.6
- ap custom testimonial 1.4.6
- ap mega menu 3.0.5
- ap pricing tables lite 1.1.2
- apex notification bar lite 2.0.4
- aplite 1.0.6
- badge designer lite for woocommerce 1.1.0
- bingle 1.0.4
- bloger 1.2.6
- comments disable accesspress 1.0.7
- construction lite 1.2.5
- doko 1.0.27
- easy side tab 1.0.7
- enlighten 1.3.5
- everest admin theme lite 1.0.7
- everest coming soon lite 1.1.0
- everest comment rating lite 2.0.4
- everest counter lite 2.0.7
- everest faq manager lite 1.0.8
- everest gallery lite 1.0.8
- everest gplaces business reviews 1.0.9
- everest review lite 1.0.7
- everest tab lite 2.0.3
- everest timeline lite 1.1.1
- fashstore 1.2.1
- form store to db 1.0.9
- fotography 2.4.0
- gaga corp 1.0.8
- gaga lite 1.4.2
- inline call to action builder lite 1.1.0
- mcontact button
- one paze 2.2.8
- parallax blog 3.1.1574941215
- parallaxsome 1.3.6
- pi button 3.3.3
- product slider for woocommerce lite 1.1.5
- punte 1.1.2
- revolve 1.3.1
- ripple 1.2.0
- scrollme 2.1.0
- smart logo showcase lite 1.1.7
- smart scroll posts 2.0.8
- smart scroll to top lite 1.0.3
- social auto poster 2.1.3
- social review
- sportsmag 1.2.1
- storevilla 1.4.1
- swing lite 1.1.9
- tauto poster 1.4.5
- the launcher 1.3.2
- the monday 1.4.1
- total gdpr compliance lite 1.0.4
- total team lite 1.1.1
- ultimate author box lite 1.1.2
- ultimate form builder lite 1.5.0
- uncode lite 1.3.1
- unicon lite 1.2.6
- vmag 1.2.7
- vmagazine lite 1.3.5
- vmagazine news 1.0.5
- wp 1 slider 1.2.9
- wp blog manager lite 1.1.0
- wp comment designer lite 2.0.3
- wp cookie user info 1.0.7
- wp floating menu 1.4.4
- wp media manager lite 1.1.2
- wp menu icons lite
- wp popup banners 1.2.3
- wp popup lite 1.0.8
- wp product gallery lite 1.1.1
- wp tfeed 1.6.7
- zigcy baby 1.0.6
- zigcy cosmetics 1.0.5
- zigcy lite 2.0.9
