WordPress Theme vulnerabilities | Page 2 | WPScan

0-9
a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z

Slug

Published

2025-06-11

Title

Besa < 2.3.10 - Unauthenticated Local File Inclusion

Slug

Published

2022-11-17

Title

Betheme < 26.6 - Subscriber+ PHP Object Injection

Slug

Published

2022-11-22

Title

BeTheme < 26.6.3 - Subscriber+ Stored XSS

Slug

Published

2022-11-21

Title

Betheme < 26.6.3 - Subscriber+ Unauthorised Action

Slug

Published

2023-04-13

Title

Betheme < 26.8 - Reflected XSS

Slug

Published

2022-11-21

Title

Betheme < 26.6.3 - Missing Authorization

Slug

Published

2022-11-21

Title

Betheme < 26.6 - Contributor+ PHP Object Injection

Slug

Published

2023-11-14

Title

Betheme < 27.1.2 - Missing Authorization

Slug

Published

2024-08-29

Title

Betheme | Responsive Multipurpose WordPress & WooCommerce Theme <= 27.5.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Slug

Published

2024-08-29

Title

Betheme < 27.5.7 - Authenticated (Contributor+) PHP Object Injection

Slug

Published

2024-09-12

Title

Betheme | Responsive Multipurpose WordPress & WooCommerce Theme < 27.5.6 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File

Slug

Published

2025-01-20

Title

Betheme < 27.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS

Slug

Published

2025-04-15

Title

Betheme < 28.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

Slug

Published

2025-08-05

Title

Betheme < 28.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

Slug

Published

2025-10-08

Title

Betheme < 28.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'page_title'

Slug

Published

2025-10-06

Title

Betheme <= 28.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Slug

Published

2024-12-11

Title

Bicycleshop < 1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

Slug

Published

2025-03-27

Title

Big Store < 2.0.9 - Missing Authorization

Slug

Published

2025-07-08

Title

Billey < 2.1.6 - Unauthenticated Local File Inclusion

Slug

Published

2025-05-13

Title

Bimber - Viral Magazine WordPress Theme <= 9.2.5 - Authenticated (Contributor+) Local File Inclusion

Slug

Published

2021-10-13

Title

Backdoored Plugins & Themes from AccessPress Themes

Slug

Published

2023-07-18

Title

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting

Slug

Published

2023-07-18

Title

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting

Slug

black-letterhead

Published

2011-09-27

Title

Black Letterhead < 1.6 - XSS

Slug

Published

2022-02-14

Title

Multiple Themes - Reflected Cross-Site Scripting via Customizer Notify

Previous
1
2
3
4
5
Next