WordPress Theme Vulnerabilities

Slug
Published
Title
Slug
snsanton
Published
2025-06-09
Title
SNS Anton <= 4.1 - Unauthenticated Local File Inclusion
Slug
snsavaz
Published
2025-06-09
Title
Avaz <= 2.8 - Unauthenticated Local File Inclusion
Slug
snsevon
Published
2025-06-11
Title
Evon <= 3.4 - Unauthenticated Local File Inclusion
Slug
snsnitan
Published
2025-06-09
Title
Nitan <= 2.9 - Unauthenticated Local File Inclusion
Slug
snssimen
Published
2025-06-11
Title
Simen <= 4.6 - Unauthenticated Local File Inclusion
Slug
snsvicky
Published
2025-06-25
Title
SNS Vicky <= 3.7 - Unauthenticated Local File Inclusion
Slug
sober
Published
2025-12-15
Title
Sober < 3.5.12 - Unauthenticated Information Exposure
Slug
sober
Published
2026-01-18
Title
Sober <= 3.5.12 - Missing Authorization
Slug
socialdriver
Published
2023-09-11
Title
Socialdriver < 2024 - Prototype Pollution to XSS
Slug
sociallyviral
Published
2024-07-09
Title
SociallyViral <= 1.0.10 - Cross-Site Request Forgery
Slug
socialv
Published
2025-02-03
Title
SocialV - Social Network and Community BuddyPress Theme < 2.0.16 - Missing Authorization to Arbitrary File Download
Slug
sofass
Published
2025-06-23
Title
Sofass <= 1.3.4 - Unauthenticated Local File Inclusion
Slug
softme
Published
2025-09-05
Title
SoftMe <= 1.1.27 - Missing Authorization
Slug
soho
Published
2026-01-29
Title
SOHO - Photography WordPress <= 3.0.3 - Unauthenticated Stored Cross-Site Scripting
Slug
soho-hotel
Published
2025-06-04
Title
Soho Hotel <= 4.2.5 - Reflected Cross-Site Scripting
Slug
solace
Published
2026-01-13
Title
Solace <= 2.1.16 - Missing Authorization
Slug
solar
Published
2025-05-30
Title
Solar Energy <= 3.5 - Authenticated (Subscriber+) PHP Object Injection
Slug
soledad
Published
2022-10-30
Title
Soledad < 8.2.6 - Subscriber+ Cross-Site Scripting
Slug
soledad
Published
2022-09-13
Title
Soledad < 8.2.5 - Reflected Cross-site Scripting
Slug
soledad
Published
2023-12-05
Title
Soledad < 8.4.2 - Unauthenticated PHP Object Injection
Slug
soledad
Published
2023-12-05
Title
Soledad < 8.4.2 - Authenticated (Contributor+) SQL Injection
Slug
soledad
Published
2023-12-05
Title
Soledad < 8.4.2 - Reflected Cross-Site Scripting
Slug
soledad
Published
2024-04-09
Title
Soledad < 8.4.6 - Missing Authorization
Slug
soledad
Published
2024-04-09
Title
Soledad < 8.4.6 - Missing Authorization
Slug
soledad
Published
2024-04-09
Title
Soledad < 8.4.6 - Cross-Site Request Forgery