WordPress Theme vulnerabilities | Page 4 | WPScan

0-9
a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z

Slug

Published

2020-07-13

Title

Prolisting - Directory Listing < 1.27 - Unauthenticated Reflected XSS

Slug

Published

2014-05-07

Title

Prostore < 1.1.3 - Open Redirection

Slug

Published

2014-08-01

Title

Site5 Wordpress Themes Email Spoofing

Slug

Published

2024-12-05

Title

Pubnews < 1.0.8 - Authenticated (Subscriber+) Arbitrary Plugin Installation

Slug

Published

2025-06-23

Title

Puca < 2.6.34 - Unauthenticated Local File Inclusion

Slug

Published

2021-10-13

Title

Backdoored Plugins & Themes from AccessPress Themes

Slug

Published

2014-08-01

Title

Purity - Multiple Cross-Site Scripting Vulnerabilities

Slug

Published

2023-08-14

Title

Multiple Themes - Reflected XSS

Slug

Published

2024-08-16

Title

Purity Of Soul <= 1.9 - Reflected Cross-Site Scripting

Slug

Published

2022-02-28

Title

Unauthorised AJAX Calls via Freemius

Slug

Published

2023-07-18

Title

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting

Slug

Published

2022-02-28

Title

Unauthorised AJAX Calls via Freemius

Slug

Published

2019-02-26

Title

Freemius Library < 2.2.4 - Subscriber+ Arbitrary Option Update

Slug

Published

2023-07-18

Title

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting

Slug

Published

2025-02-11

Title

Puzzles | WP Magazine / Review with Store WordPress Theme + RTL < 4.2.5 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting

Slug

Published

2025-02-12

Title

Puzzles < 4.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Slug

Published

2025-02-12

Title

Puzzles | WP Magazine / Review with Store WordPress Theme + RTL < 4.2.5 - Unauthenticated PHP Object Injection