Anima Theme |
Cross-Site Scripting (XSS) |
Benevolent Theme |
Cross-Site Request Forgery (CSRF) |
Blocksy Theme |
Cross-Site Scripting (XSS) |
Bloglo Theme |
Cross-Site Scripting (XSS) |
Blossom Shop Theme |
Cross-Site Request Forgery (CSRF) |
BlossomThemes Email Newsletter |
Server-Side Request Forgery (SSRF) |
Book Landing Page Theme |
Cross-Site Request Forgery (CSRF) |
Chic Lite Theme |
Cross-Site Request Forgery (CSRF) |
Coachify Theme |
Cross-Site Request Forgery (CSRF) |
Customizr Theme |
Cross-Site Request Forgery (CSRF) |
DethemeKit For Elementor |
Cross-Site Scripting (XSS) via URL Parameter of the De Gallery Widget |
Digital Newspaper Theme |
Cross-Site Request Forgery (CSRF) |
Divi Theme |
Cross-Site Scripting (XSS) |
DiviTorque – Divi Theme, Divi Builder and Extra Theme |
Cross-Site Scripting (XSS) via SVG Upload |
Education Zone Theme |
Cross-Site Request Forgery (CSRF) |
Eduma Theme |
Cross-Site Scripting (XSS) |
Elegant Pink Theme |
Cross-Site Request Forgery (CSRF) |
Elegant Themes Icons |
Cross-Site Scripting (XSS) |
Enfold Theme |
Cross-Site Scripting (XSS) |
Esteem Theme |
Cross-Site Scripting (XSS) |
Event Theme |
Cross-Site Scripting (XSS) |
Excellent Theme |
Cross-Site Scripting (XSS) |
Flatsome Theme |
Cross-Site Scripting (XSS) via Shortcode |
Flatsome Theme |
Cross-Site Scripting (XSS) via Shortcodes |
Formula Theme |
Cross-Site Scripting (XSS) |
Formula Theme |
Cross-Site Scripting (XSS) |
Foxiz Theme |
Server-Side Request Forgery (SSRF) |
Grey Opaque Theme |
Cross-Site Scripting (XSS) via Download-Button Shortcode |
Hueman Theme |
Cross-Site Request Forgery (CSRF) |
Idyllic Theme |
Cross-Site Scripting (XSS) |
Infinite Photography Theme |
Cross-Site Scripting (XSS) via project_url Parameter |
Interface Theme |
Cross-Site Scripting (XSS) |
JobScout Theme |
Cross-Site Request Forgery (CSRF) |
Materialis Theme |
Missing Authorization (BAC) to Limited Arbitrary Options Update (BAC) |
Mesmerize Theme |
Cross-Site Request Forgery (CSRF) |
Mosaic Theme |
Cross-Site Scripting (XSS) via Button Shortcode |
NewsMash Theme |
Cross-Site Request Forgery (CSRF) |
OnePress Theme |
Cross-Site Request Forgery (CSRF) |
Orbit Fox by ThemeIsle |
Cross-Site Scripting (XSS) |
Perfect Portfolio Theme |
Cross-Site Request Forgery (CSRF) |
Pixgraphy Theme |
Cross-Site Scripting (XSS) |
Preschool and Kindergarten Theme |
Cross-Site Request Forgery (CSRF) |
Radcliffe 2 Theme |
Broken Access Control (BAC) |
Responsive Theme |
Cross-Site Scripting (XSS) |
Rife Free Theme |
Cross-Site Scripting (XSS) |
Scylla lite Theme |
Cross-Site Scripting (XSS) via Button Shortcode |
Shortcodes by United Themes |
Cross-Site Scripting (XSS) |
Silesia Theme |
Cross-Site Scripting (XSS) via Button Shortcode |
Sinatra Theme |
Cross-Site Scripting (XSS) |
Striking Theme |
Local File Inclusion (LFi) |
Striking Theme |
Cross-Site Scripting (XSS) |
The7 Theme |
Cross-Site Scripting (XSS) via url Attribute |
Themesflat Addons For Elementor |
Cross-Site Scripting (XSS) |
Theron Lite Theme |
Cross-Site Scripting (XSS) via Button Shortcode |
Travel Monster Theme |
Cross-Site Request Forgery (CSRF) |
Vandana Lite Theme |
Cross-Site Request Forgery (CSRF) |
Vilva Theme |
Cross-Site Request Forgery (CSRF) |
Weaver Xtreme Theme Support |
Cross-Site Scripting (XSS) via div Shortcode |
WP Child Theme Generator |
Unauthenticated Child Theme Creation (BAC) /Activation |