Yellow Pencil Visual Theme Customizer 漏洞列表

共找到 1 个与 Yellow Pencil Visual Theme Customizer 相关的漏洞

📅 加载漏洞趋势中...

CVE-2019-11886: Yellow Pencil Visual Theme Customizer < 7.2.1 - Privilege Escalation POC

日期: 2025-08-01 | 影响软件: Yellow Pencil Visual Theme Customizer

The WaspThemes Visual CSS Style Editor (aka yellow-pencil-visual-theme-customizer) plugin before 7.2.1 for WordPress allows yp_option_update CSRF, as demonstrated by use of yp_remote_get to obtain admin access.