WordPress Theme Vulnerabilities

Slug
Published
Title
Slug
amuli
Published
2026-01-08
Title
Amuli <= 2.3.0 - Unauthenticated Local File Inclusion
Slug
amwerk
Published
2025-07-01
Title
Amwerk < 1.3.0 - Unauthenticated PHP Object Injection
Slug
anand
Published
2023-08-14
Title
Multiple Themes - Reflected XSS
Slug
anarkali
Published
2026-01-08
Title
Anarkali <= 1.0.9 - Unauthenticated Local File Inclusion
Slug
andersonclinic
Published
2026-02-26
Title
Anderson <= 1.4.2 - Unauthenticated Local File Inclusion
Slug
andyblue
Published
2007-06-15
Title
Andyblue < 20070607 - XSS
Slug
anfaust
Published
2023-08-14
Title
Multiple Themes - Reflected XSS
Slug
angel
Published
2025-11-12
Title
Angel – Fashion Model Agency WordPress CMS Theme <= 3.2.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting
Slug
anih
Published
2024-11-08
Title
Anih - Creative Agency WordPress Theme <= 2024 - Authenticated (Administrator+) Stored Cross-Site Scripting
Slug
anima
Published
2024-06-25
Title
Anima < 1.4.1.1 - Contributor+ Stored XSS
Slug
anon2x
Published
2026-01-13
Title
Anon <= 2.2.10 - Reflected Cross-Site Scripting
Slug
anona
Published
2026-01-13
Title
Anona <= 8.0 - Unauthenticated Arbitrary File Deletion
Slug
anona
Published
2026-01-13
Title
Anona <= 8.0 - Authenticated (Subscriber+) PHP Object Injection
Slug
anona
Published
2026-01-13
Title
Anona <= 8.0 - Unauthenticated Arbitrary File Download
Slug
anthology
Published
2014-08-01
Title
Anthology - Remote File Upload
Slug
antioch
Published
2016-03-03
Title
Antioch Theme - Arbitrary File Download
Slug
antisnews
Published
2011-09-27
Title
Antisnews < 1.10 - XSS
Slug
antreas
Published
2020-10-01
Title
Multiple Themes - Unauthenticated Function Injection
Slug
anubis
Published
2025-08-22
Title
Anubis <= 1.25 - Unauthenticated Local File Inclusion
Slug
anywhere-elementor-pro
Published
2025-05-16
Title
AnyWhere Elementor Pro <= 2.29 - Missing Authorization
Slug
aora
Published
2025-06-11
Title
Aora < 1.3.10 - Unauthenticated Local File Inclusion
Slug
aora
Published
2025-12-20
Title
Aora <= 1.3.15 - Authenticated (Contributor+) Local File Inclusion
Slug
aora
Published
2026-02-24
Title
Aora - Home & Lifestyle Elementor WooCommerce Theme <= 1.3.15 - Unauthenticated Local File Inclusion
Slug
aplite
Published
2021-10-13
Title
Backdoored Plugins & Themes from AccessPress Themes
Slug
apollo
Published
2026-02-25
Title
Apollo | Night Club, DJ Event WordPress <= 1.3.1 - Unauthenticated Local File Inclusion