CVE-2020-10257

CRITICAL EPSS 94.6%
Published Mar 10, 20206y ago · Modified Jun 17, 20262w ago
9.8 CVSS 3.1
Critical
Find Similar
Published Mar 10, 2020 6y ago
Last Modified Jun 17, 2026 2w ago

Description

The ThemeREX Addons plugin before 2020-03-09 for WordPress lacks access control on the /trx_addons/v2/get/sc_layout REST API endpoint, allowing for PHP functions to be executed by any users, because includes/plugin.rest-api.php calls trx_addons_rest_get_sc_layout with an unsafe sc parameter.

CVSS Details

Base Score
9.8
Exploitability
3.9
Impact
5.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
94.6% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 2

CWE-862 Missing Authorization Authorization
CWE-94 Improper Control of Generation of Code (Code Injection) Injection

Affected Products 124

VendorProductVersionRange
themerexaddons1.70.3any
themerexozeum-museum* <1.0.2
themerexaddons1.70.3any
themerexchit_club-board_games* <1.0.1
themerexaddons1.6.67any
themerexyottis-simple_portfolio* <1.0.1
themerexaddons1.6.66any
themerexhelion-agency_\&portfolio* <1.0.3
themerexaddons1.6.66any
themerexamuli* <1.0.2
themerexaddons1.6.65any
themerexnelson-barbershop_\+_tattoo_salon* <1.0.1.2001
themerexaddons1.6.65any
themerexhallelujah-church* <1.0.1
themerexaddons1.6.65any
themerexright_way* <4.0.1
themerexaddons1.6.65any
themerexprider-pride_fest* <1.0.2
themerexaddons1.6.62.3any
themerexmystik-esoterics* <1.0.1
themerexaddons1.6.62.3any
themerexskydiving_and_flying_company* <1.0.1
themerexaddons1.6.62.1any
themerexdronex-aerial_photography_services* <1.1.2001
themerexaddons1.6.61.2any
themerexsamadhi-buddhist* <1.0.1
themerexaddons1.6.61.3any
themerextantum-rent_a_car\,_rent_a_bike\,_rent_a_scooter_multiskin_theme* <1.0.2
themerexaddons1.6.61.2any
themerexscientia-public_library* <1.0.1
themerexaddons1.6.61.2any
themerexblabber* <1.5.2009
themerexaddons1.6.61.1any
themereximpacto_patronus_multi-landing* <1.1.2001
themerexaddons1.6.61any
themerexrare_radio* <1.0.1
themerexaddons1.6.60any
themerexpiqes-creative_startup_\&_agency_wordpress_theme* <1.0.1
themerexaddons1.6.59.3any
themerexkratz-digital_agency* <1.0.2
themerexaddons1.6.59.2any
themerexpixefy* <1.0.1
themerexaddons1.6.59.1.1any
themerexnetmix-broadband_\&_telecom* <1.0.2
themerexaddons1.6.59any
themerexkids_care* <3.0.5
themerexaddons1.6.58.2any
themerexbriny-diving_wordpress_theme* <1.2.2000
themerexaddons1.6.57.3any
themerextornados* <1.1.2001
themerexaddons1.6.57.4any
themerexgridiron* <1.0.2
themerexaddons1.6.57.2any
themerexyungen-digital\/marketing_agency* <1.0.1
themerexaddons1.6.57.3any
themerexfc_united-football* <1.0.7
themerexaddons1.6.57.2any
themerexbugster-pests_control* <1.0.2
themerexaddons1.6.57any
themerexrumble-single_fighter_boxer\,_news\,_gym\,_store* <1.0.4
themerexaddons1.6.56any
themerextacticool-shooting_range_wordpress_theme* <1.0.1
themerexaddons1.6.55.4any
themerexcoinpress-cryptocurrency_magazine_\&_blog_wordpress_theme* <1.0.2
themerexaddons1.6.55.7any
themerexvihara-ashram\,_buddhist* <1.1.2001
themerexaddons1.6.55.3any
themerexkatelyn-gutenberg_wordpress_blog_theme* <1.0.4
themerexaddons1.6.55.1any
themerexheaven_11-multiskin_property_theme* <1.0.2
themerexaddons1.6.54any
themerexespecio-food_gutenberg_theme* <1.0.1
themerexaddons1.6.53.1any
themerexpartiso_electioncampaign* <1.1.2002
themerexaddons1.6.53.3any
themerexkargo-freight_transport* <1.1.2004
themerexaddons1.6.53.2any
themerexmaxify-startup_blog* <1.0.4
themerexaddons1.6.53.1any
themerexlingvico-language_learning_school* <1.0.3
themerexaddons1.6.53.2any
themerexaldo-gutenberg_wordpress_blog_theme* <1.0.2
themerexaddons1.6.52.2any
themerexvixus-startup_\/_mobile_application* <1.0.4
themerexaddons1.6.52.1any
themerexwellspring_water_filter_systems* <1.0.3
themerexaddons1.6.52.1any
themerexnazareth-church* <1.0.5
themerexaddons1.6.53any
themerextediss-soft_play_area\,_cafe_\&_child_care_center* <1.0.3
themerexaddons1.6.51.3any
themerexyolox-startup_magazine_\&_blog_wordpress_theme* <1.0.3
themerexaddons1.6.51.3any
themerexmeals_and_wheels-food_truck* <1.0.3
themerexaddons1.6.51.1any
themerexrosalinda-vegetarian_\&_health_coach* <1.0.3
themerexaddons1.6.50any
themerexvapester* <1.1.2001
themerexaddons1.6.50any
themerexmodern_housewife-housewife_and_family_blog* <1.0.2
themerexaddons1.6.50.1any
themerexchainpress* <1.0.3
themerexaddons1.6.51.1any
themerexjustitia-multiskin_lawyer_theme* <1.0.3
themerexaddons1.6.50any
themerexhobo_digital_nomad_blog* <1.0.3
themerexaddons1.6.50.1any
themerexrhodos-creative_corporate_wordpress_theme* <1.3.2001
themerexaddons1.6.50any
themerexbuzz_stone-magazine_\&_blog* <1.0.3
themerexaddons1.0.49.10any
themerexcorredo_sport_event* <1.1.2003
themerexaddons1.6.49.8any
themerexsavejulia_personal_fundraising_campaign* <1.0.3
themerexaddons1.6.49.6any
themerexbonkozoo_zoo* <1.0.3
themerexaddons1.6.49.6.2any
themerexrenewal-plastic_surgeon_clinic* <1.0.3
themerexaddons1.6.49.5any
themerexgloss_blog* <1.0.1
themerexaddons1.6.58.2any
themerexplumbing-repair\,_building_\&_construction_wordpress_theme* <3.0.1
themerexaddons1.6.61.2any
themerextopper_theme_and_skins*any

References 1

  • wordfence.com https://www.wordfence.com/blog/2020/03/zero-day-vulnerability-in-themerex-addons-now-patched/
    ExploitThird Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.