Vulnerability Details : CVE-2020-10257
The ThemeREX Addons plugin before 2020-03-09 for WordPress lacks access control on the /trx_addons/v2/get/sc_layout REST API endpoint, allowing for PHP functions to be executed by any users, because includes/plugin.rest-api.php calls trx_addons_rest_get_sc_layout with an unsafe sc parameter.
Products affected by CVE-2020-10257
- cpe:2.3:a:themerex:addons:1.70.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.67:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.66:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.65:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.62.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.62.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.61.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.61.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.61.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.61:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.60:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.59.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.59.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.59.1.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.59:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.58.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.57.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.57.4:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.57.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.57:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.56:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.55.4:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.55.7:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.55.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.55.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.54:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.53.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.53.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.53.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.52.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.52.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.53:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.51.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.51.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.50:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.50.1:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.0.49.10:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.49.8:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.49.6:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.49.6.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:addons:1.6.49.5:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:ozeum-museum:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:chit_club-board_games:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:yottis-simple_portfolio:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:helion-agency_\&portfolio:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:amuli:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:nelson-barbershop_\+_tattoo_salon:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:hallelujah-church:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:right_way:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:prider-pride_fest:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:mystik-esoterics:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:skydiving_and_flying_company:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:dronex-aerial_photography_services:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:samadhi-buddhist:*:*:*:*:*:wordpress:*:*
- Themerex » Tantum-rent A Car, Rent A Bike, Rent A Scooter Multiskin Theme » For WordpressVersions before (<) 1.0.2cpe:2.3:a:themerex:tantum-rent_a_car\,_rent_a_bike\,_rent_a_scooter_multiskin_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:scientia-public_library:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:blabber:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:impacto_patronus_multi-landing:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:rare_radio:*:*:*:*:*:wordpress:*:*
- Themerex » Piqes-creative Startup & Agency Wordpress Theme » For WordpressVersions before (<) 1.0.1cpe:2.3:a:themerex:piqes-creative_startup_\&_agency_wordpress_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:kratz-digital_agency:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:pixefy:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:netmix-broadband_\&_telecom:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:kids_care:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:briny-diving_wordpress_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:tornados:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:gridiron:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:yungen-digital\/marketing_agency:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:fc_united-football:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:bugster-pests_control:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:rumble-single_fighter_boxer\,_news\,_gym\,_store:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:tacticool-shooting_range_wordpress_theme:*:*:*:*:*:wordpress:*:*
- Themerex » Coinpress-cryptocurrency Magazine & Blog Wordpress Theme » For WordpressVersions before (<) 1.0.2cpe:2.3:a:themerex:coinpress-cryptocurrency_magazine_\&_blog_wordpress_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:vihara-ashram\,_buddhist:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:katelyn-gutenberg_wordpress_blog_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:heaven_11-multiskin_property_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:especio-food_gutenberg_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:partiso_electioncampaign:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:kargo-freight_transport:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:maxify-startup_blog:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:lingvico-language_learning_school:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:aldo-gutenberg_wordpress_blog_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:vixus-startup_\/_mobile_application:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:wellspring_water_filter_systems:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:nazareth-church:*:*:*:*:*:wordpress:*:*
- Themerex » Tediss-soft Play Area, Cafe & Child Care Center » For WordpressVersions before (<) 1.0.3cpe:2.3:a:themerex:tediss-soft_play_area\,_cafe_\&_child_care_center:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:yolox-startup_magazine_\&_blog_wordpress_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:meals_and_wheels-food_truck:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:rosalinda-vegetarian_\&_health_coach:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:vapester:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:modern_housewife-housewife_and_family_blog:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:chainpress:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:justitia-multiskin_lawyer_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:hobo_digital_nomad_blog:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:rhodos-creative_corporate_wordpress_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:buzz_stone-magazine_\&_blog:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:corredo_sport_event:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:savejulia_personal_fundraising_campaign:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:bonkozoo_zoo:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:renewal-plastic_surgeon_clinic:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:gloss_blog:*:*:*:*:*:wordpress:*:*
- Themerex » Plumbing-repair, Building & Construction Wordpress Theme » For WordpressVersions before (<) 3.0.1cpe:2.3:a:themerex:plumbing-repair\,_building_\&_construction_wordpress_theme:*:*:*:*:*:wordpress:*:*
- cpe:2.3:a:themerex:topper_theme_and_skins:-:*:*:*:*:wordpress:*:*
Exploit prediction scoring system (EPSS) score for CVE-2020-10257
10.11%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 95 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2020-10257
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
MITRE | |
9.8
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2020-10257
-
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.Assigned by: nvd@nist.gov (Primary)
-
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.Assigned by: nvd@nist.gov (Primary)
References for CVE-2020-10257
-
https://www.wordfence.com/blog/2020/03/zero-day-vulnerability-in-themerex-addons-now-patched/
Zero-Day Vulnerability in ThemeREX Addons Now PatchedExploit;Third Party Advisory
Jump to