WordPress Theme Vulnerabilities

Slug
Published
Title
Slug
xcare
Published
2025-10-07
Title
Xcare < 6.5 - Unauthenticated Local File Inclusion
Slug
xenon
Published
2020-03-26
Title
Xenon Theme <= 1.3 - Unauthenticated Cross-Site Scripting (XSS)
Slug
xews-lite
Published
2025-04-21
Title
Xews Lite <= 1.0.9 - Unauthenticated Local File Inclusion
Slug
xin
Published
2024-11-13
Title
Xin <= 1.0.8.1 - Unauthenticated PHP Object Injection
Slug
xinterio
Published
2025-08-06
Title
Xinterio < 4.3 - Unauthenticated Local File Inclusion
Slug
xmas
Published
2014-08-01
Title
Site5 Wordpress Themes Email Spoofing
Slug
xsmart
Published
2025-10-08
Title
xSmart <= 1.2.9.4 - Authenticated (Subscriber+) Arbitrary Shortcode Execution
Slug
xstore
Published
2024-04-25
Title
XStore < 9.3.9 - Missing Authorization
Slug
xstore
Published
2024-04-25
Title
XStore < 9.3.9 - Subscriber+ Arbitrary Options Update
Slug
xstore
Published
2024-04-25
Title
XStore < 9.3.9 - Missing Authorization
Slug
xstore
Published
2024-04-25
Title
XStore < 9.3.9 - Unauthenticated SQLi
Slug
xstore
Published
2024-04-25
Title
XStore < 9.3.9 - Unauthenticated Local File Inclusion
Slug
xstore
Published
2024-04-25
Title
XStore < 9.3.9 - Reflected Cross-Site Scripting
Slug
xstore
Published
2025-09-26
Title
XStore < 9.6 - Unauthenticated Arbitrary Shortcode Execution
Slug
xstore
Published
2025-10-14
Title
XStore | Multipurpose WooCommerce Theme < 9.6 - Authenticated (Subscriber+) Local File Inclusion