Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-05-13
CVE-2025-4317 - Thegem Theme
The TheGem theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the thegem_get_logo_url() function in all versions up to, and including, 5.10.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
THEME
Thegem
CVE-2025-4317
Risk Score
Threat Entry
Updated 2025-05-13
CVE-2025-4339 - Thegem Theme
The TheGem theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxApi() function in all versions up to, and including, 5.10.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary theme options.
THEME
Thegem
CVE-2025-4339
Risk Score
Threat Entry
Updated 2025-06-04
CVE-2024-13793 - Multi Vendor Marketplace Woocommerce Theme
The Wolmart | Multi-Vendor Marketplace WooCommerce Theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.8.11. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
THEME
Multi Vendor Marketplace Woocommerce Theme
CVE-2024-13793
Risk Score
Threat Entry
Updated 2025-05-05
CVE-2024-13738 - Listing Wordpress Theme
The The Motors - Car Dealer, Rental & Listing WordPress theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.6.65. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes. *It is unclear exactly which version the issue was patched in from the changelog. Therefore, we used the latest version at the time of verification.
THEME
Listing Wordpress Theme
CVE-2024-13738
Risk Score
Threat Entry
Updated 2025-05-22
CVE-2024-13858 - Buddyboss Platform Plugin And Buddyboss Theme
The BuddyBoss Platform plugin and BuddyBoss Theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘invitee_name’ parameter in all versions up to, and including, 2.8.50 and 2.8.41, respectively, due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. The vulnerability was partially patched in the BuddyBoss Platform plugin in version 2.8.41.
THEME
Buddyboss Platform Plugin And Buddyboss
CVE-2024-13858
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-1327 - Homey Theme
The Homey theme for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.4.4 via the 'homey_delete_user_account' action due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete other user's accounts.
THEME
Homey
CVE-2025-1327
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-1326 - Homey Theme
The Homey theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the homey_reservation_del() function in all versions up to, and including, 2.4.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary reservations and posts.
THEME
Homey
CVE-2025-1326
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-1305 - Newsblogger Theme
The NewsBlogger theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.2.5.4. This is due to missing or incorrect nonce validation on the newsblogger_install_and_activate_plugin() function. This makes it possible for unauthenticated attackers to upload arbitrary files and achieve remote code execution via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
THEME
Newsblogger
CVE-2025-1305
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-1304 - Newsblogger Theme
The NewsBlogger theme for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the newsblogger_install_and_activate_plugin() function in all versions up to, and including, 0.2.5.1. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
THEME
Newsblogger
CVE-2025-1304
Risk Score
Threat Entry
Updated 2025-04-29
CVE-2025-2101 - Edumall Theme
The Edumall theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.4 via the 'template' parameter of the 'edumall_lazy_load_template' AJAX action. This makes it possible for unauthenticated attackers to include and execute arbitrary PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where PHP files can be uploaded and included.
THEME
Edumall
CVE-2025-2101
Risk Score
Threat Entry
Updated 2025-04-29
CVE-2025-2470 - Used By The Service Finder Directory And Job Board Theme
The Service Finder Bookings plugin for WordPress, used by the Service Finder - Directory and Job Board WordPress Theme, is vulnerable to privilege escalation in all versions up to, and including, 5.1. This is due to a lack of restriction on user role in the 'nsl_registration_store_extra_input' function. This makes it possible for unauthenticated attackers to register an account on the site with an arbitrary role, including Administrator, when registering via a social login. The Nextend Social Login plugin must be installed and configured to exploit the vulnerability.
THEME
Used By The Service Finder Directory And Job Board
CVE-2025-2470
Risk Score
Threat Entry
Updated 2025-04-29
CVE-2025-2238 - Vikinger Theme
The Vikinger theme for WordPress is vulnerable to privilege in all versions up to, and including, 1.9.30. This is due to insufficient user_meta restrictions in the 'vikinger_user_meta_update_ajax' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to escalate their privileges to Administrator-level.
THEME
Vikinger
CVE-2025-2238
Risk Score
Threat Entry
Updated 2025-04-29
CVE-2024-13307 - Reales Wp Real Estate Wordpress Theme
The Reales WP - Real Estate WordPress Theme theme for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the 'reales_delete_file', 'reales_delete_file_plans', 'reales_add_to_favourites', and 'reales_remove_from_favourites' functions in all versions up to, and including, 2.1.2. This makes it possible for unauthenticated attackers to delete arbitrary attachments, and add or remove favorite property listings for any user.
THEME
Reales Wp Real Estate Wordpress Theme
CVE-2024-13307
Risk Score
Threat Entry
Updated 2025-06-23
CVE-2025-2558 - Through 0 Theme
The-wound WordPress theme through 0.0.1 does not validate some parameters before using them to generate paths passed to include function/s, allowing unauthenticated users to perform LFI attacks and download arbitrary file from the server
THEME
Through 0
CVE-2025-2558
Risk Score
Threat Entry
Updated 2025-04-30
CVE-2025-3457 - Oceanwp Theme
The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'oceanwp_icon' shortcode in all versions up to, and including, 2.4.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
THEME
Oceanwp
CVE-2025-3457
Risk Score
Threat Entry
Updated 2025-04-21
CVE-2025-1093 - Aihub Theme
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generate_image function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
THEME
Aihub
CVE-2025-1093
Risk Score
Threat Entry
Updated 2025-06-04
CVE-2025-3077 - Betheme
The Betheme theme for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Button shortcode and Custom CSS field in all versions up to, and including, 28.0.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
THEME
Betheme
CVE-2025-3077
Risk Score
Threat Entry
Updated 2025-04-08
CVE-2025-2526 - Streamit Theme
The Streamit theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.0.2. This is due to the plugin not properly validating a user's identity prior to updating their details like email in the 'st_Authentication_Controller::edit_profile' function. This makes it possible for unauthenticated attackers to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
THEME
Streamit
CVE-2025-2526
Risk Score
Threat Entry
Updated 2025-04-08
CVE-2025-2525 - Streamit Theme
The Streamit theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'st_Authentication_Controller::edit_profile' function in all versions up to, and including, 4.0.1. This makes it possible for authenticated attackers, with subscriber-level and above permissions, to upload arbitrary files on the affected site's server which may make remote code execution possible.
THEME
Streamit
CVE-2025-2525
Risk Score
Threat Entry
Updated 2025-04-08
CVE-2025-2519 - Sreamit Theme
The Sreamit theme for WordPress is vulnerable to arbitrary file downloads in all versions up to, and including, 4.0.1. This is due to insufficient file validation in the 'st_send_download_file' function. This makes it possible for authenticated attackers, with subscriber-level access and above, to download arbitrary files.
THEME
Sreamit
CVE-2025-2519
Risk Score