CVE-2024-33686

Summary

Missing Authorization vulnerability in Extend Themes Pathway, Extend Themes Hugo WP, Extend Themes Althea WP, Extend Themes Elevate WP, Extend Themes Brite, Extend Themes Colibri WP, Extend Themes Vertice.This issue affects Pathway: from n/a through 1.0.15; Hugo WP: from n/a through 1.0.8; Althea WP: from n/a through 1.0.13; Elevate WP: from n/a through 1.0.15; Brite: from n/a through 1.0.11; Colibri WP: from n/a through 1.0.94; Vertice: from n/a through 1.0.7.

Affected Software

VendorProductVersion RangeStatus
Extend ThemesPathwayn/a <= 1.0.15affected
Extend ThemesHugo WPn/a <= 1.0.8affected
Extend ThemesAlthea WPn/a <= 1.0.13affected
Extend ThemesElevate WPn/a <= 1.0.15affected
Extend ThemesBriten/a <= 1.0.11affected
Extend ThemesColibri WPn/a <= 1.0.94affected
Extend ThemesVerticen/a <= 1.0.7affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References