What is CVE-2020-36721?

CVE-2020-36721 is a medium-severity vulnerability in Silkalns Activello, classified under Improper Access Control. CVSS score: 6.5/10. Published 2023-06-07.

How severe is CVE-2020-36721?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Is CVE-2020-36721 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Silkalns Activello

CVE-2020-36721

The Brilliance <= 1.2.7, Activello <= 1.4.0, and Newspaper X <= 1.3.1 themes for WordPress are vulnerable to Plugin Activation/Deactivation. This is due to the 'activello_activate_plugin' and 'activello_deactivate_plugin' functions in the…

EPSS: 0.002 (39.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L.

Affected products

Silkalns Activello — versions 0
Silkalns Newspaper X — versions 0
Wpchill Brilliance — versions 0

Weakness classification (CWE)

CWE-284 — Improper Access Control

Public proof-of-concept exploits

20142995/nuclei-templates

References

Frequently asked questions

What is CVE-2020-36721?: CVE-2020-36721 is a medium-severity vulnerability in Silkalns Activello, classified under Improper Access Control. CVSS score: 6.5/10. Published 2023-06-07.
How severe is CVE-2020-36721?: Medium severity. CVSS v3 base score is 6.5 out of 10.
Is CVE-2020-36721 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.