CVE-2022-45356
WordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerabilityMissing Authorization vulnerability in Muffingroup Betheme.This issue affects Betheme: from n/a through 26.6.1.
We have discovered 36,472 live websites that are affected by CVE-2022-45356.
Affected Software
| Product | |
| Category | Wordpress Themes |
| Vulnerable Domains | 36,472 live websites (43% of BeTheme install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 242 versions ( 69% of all versions) |
Common Weakness Enumeration
CWE-862 Missing AuthorizationDetails
- Published - Mar 25, 2024
- Updated - Aug 8, 2024
Credits
- Dave Jong (Patchstack) (finder)
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2022-45356 United States | 7,667 websites |
 Germany | 4,172 websites |
 Italy | 2,607 websites |
 Brazil | 2,054 websites |
 France | 2,025 websites |
 Poland | 1,261 websites |
 GB | 1,178 websites |
 Spain | 1,116 websites |
 Russia | 1,066 websites |
 Netherlands | 1,030 websites |
Website Distribution by TLD
Number of websites using CVE-2022-45356| .com | 13,008 websites |
| .de | 2,391 websites |
| .com.br | 2,009 websites |
| .it | 1,870 websites |
| .fr | 1,266 websites |
| .org | 1,100 websites |
| .pl | 966 websites |
| .nl | 904 websites |
| .ru | 846 websites |
| .co.uk | 701 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2022-45356
Top websites that are affected by CVE-2022-45356. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *********.nl | United States | *,*** | |
| ******.fr | France | **,*** | |
| **********.com | United States | **,*** | |
| **********.com | United States | **,*** | |
| ***********.com |  Canada | ***,*** | |
| *******.**.ke |  Kenya | ***,*** | |
| **********.com | United States | ***,*** | |
| *****.com |  Pakistan | ***,*** | |
| ************.com | Canada | ***,*** | |
| ***********************.***.au |  Australia | ***,*** |
FAQ
CVE-2022-45356 is Missing Authorization in BeTheme
A total of 36,472 websites have been identified as vulnerable to CVE-2022-45356, based on global website indexing conducted by WebTechSurvey.
The BeTheme is affected by the CVE-2022-45356 vulnerability.
BeTheme versions up to and including 26.6.1 are vulnerable to CVE-2022-45356.