WordPress Theme vulnerabilities | Page 3 | WPScan

0-9
a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z

Slug

Published

2025-01-24

Title

Houzez < 3.4.2 - Missing Authorization

Slug

Published

2025-01-21

Title

Houzez < 3.4.2 - Missing Authorization

Slug

Published

2025-07-01

Title

Houzez < 4.0.8 - Unauthenticated Local File Inclusion

Slug

Published

2025-07-16

Title

Houzez < 4.1.1 - Missing Authorization

Slug

Published

2025-08-20

Title

Houzez < 4.1.4 - Missing Authorization

Slug

Published

2025-08-27

Title

Houzez < 4.1.4 - Reflected Cross-Site Scripting

Slug

Published

2025-08-27

Title

Houzez < 4.1.4 - Unauthenticated Local File Inclusion

Slug

Published

2025-10-16

Title

Houzez < 4.2.0 - Unauthenticated Local File Inclusion

Slug

Published

2025-11-26

Title

Houzez < 4.1.7 - Authenticated (Subscriber+) PHP Object Injection via Saved Search

Slug

Published

2025-11-26

Title

Houzez < 4.1.7 - Unauthenticated Stored Cross-Site Scripting via SVG File Upload

Slug

Published

2025-07-11

Title

Houzez <= 4.1.1 - Authenticated (Subscriber+) Insecure Direct Object Reference

Slug

Published

2025-08-27

Title

LiquidThemes Themes <= Various Versions - Missing Authorization to Authenticated (Subscriber+) All Plugins Deactivated

Slug

Published

2020-09-16

Title

Multiple Plugins/Themes - Cross-Site Request Forgery (CSRF)

Slug

Published

2020-09-26

Title

Hueman < 3.6.4 - Arbitrary Settings Update via CSRF

Slug

Published

2024-06-18

Title

Hueman < 3.7.25 - Cross-Site Request Forgery to Notice Dismissal

Slug

Published

2024-04-26

Title

ColibriWP Theme framework - Various Versions and Themes - Missing Authorization

Slug

Published

2011-09-27

Title

Hybrid < 0.10 - XSS

Slug

Published

2025-06-18

Title

HYDRO <= 2.8 - Reflected Cross-Site Scripting