Envato Template Kit – Import
2 CVEs affecting Envato Template Kit – Import. Latest disclosed: 2024-04-09. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-4330 | High | 8.8 | 2023-03-07 | The Envato Elements & Download and Template Kit – Import plugins for WordPress are vulnerable to arbitrary file uploads due to insufficient validation of file… |
CVE-2024-2334 | Medium | 6.4 | 2024-04-09 | The Template Kit – Import plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the template upload functionality in all versions up to, and in… |