Themerex Maxify-startup Blog — known CVE vulnerabilities
Every CVE whose affected-product data names Themerex Maxify-startup Blog, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2020-10257 — CVSS 9.8 (critical): The ThemeREX Addons plugin before 2020-03-09 for WordPress lacks access control on the /trx_addons/v2/get/sc_layout REST API endpoint…