| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-25306 | WordPress XStore Core plugin <= 5.6.4 - Reflected Cross Site Scripting (XSS) vulnerability | 8theme | XStore Core | High | 7.1 | 2026-03-25 16:14:39 | Deep Dive |
| CVE-2026-25307 | WordPress XStore Core plugin < 5.7 - Cross Site Scripting (XSS) vulnerability | 8theme | XStore Core | - | - | 2026-02-19 08:26:53 | Deep Dive |
| CVE-2026-25305 | WordPress XStore theme <= 9.6.4 - Cross Site Scripting (XSS) vulnerability | 8theme | XStore | - | - | 2026-02-19 08:26:53 | Deep Dive |
| CVE-2026-25006 | WordPress XStore theme <= 9.6.4 - Arbitrary Shortcode Execution vulnerability | 8theme | XStore | Medium | 5.3 | 2026-02-19 08:26:52 | Deep Dive |
| CVE-2025-64190 | WordPress XStore Core plugin < 5.6 - Cross Site Scripting (XSS) vulnerability | 8theme | XStore Core | Medium | 6.5 | 2025-12-30 16:00:52 | Deep Dive |
| CVE-2025-64193 | WordPress XStore theme < 9.6.1 - Local File Inclusion vulnerability | 8theme | XStore | - | - | 2025-12-18 07:22:11 | Deep Dive |
| CVE-2025-64192 | WordPress XStore theme < 9.6 - Broken Access Control vulnerability | 8theme | XStore | - | - | 2025-12-18 07:22:11 | Deep Dive |
| CVE-2025-64191 | WordPress XStore theme < 9.6.1 - Cross Site Scripting (XSS) vulnerability | 8theme | XStore | - | - | 2025-12-18 07:22:10 | Deep Dive |
| CVE-2025-64189 | WordPress XStore Core plugin < 5.6 - Cross Site Scripting (XSS) vulnerability | 8theme | XStore Core | High | 7.1 | 2025-12-18 07:22:10 | Deep Dive |
| CVE-2025-11746 | XStore | Multipurpose WooCommerce Theme <= 9.5.4 - Authenticated (Subscriber+) Local File Inclusion | 8theme | XStore | High | 8.8 | 2025-10-15 02:26:27 | Deep Dive |
| CVE-2025-60100 | WordPress XStore theme < 9.6 - Content Injection vulnerability | 8theme | XStore | Medium | 5.3 | 2025-09-26 08:31:21 | Deep Dive |
| CVE-2024-33555 | WordPress XStore Core plugin <= 5.3.8 - Multiple Authenticated Broken Access Control vulnerability | 8theme | XStore Core | High | 8.1 | 2024-06-09 12:07:22 | Deep Dive |
| CVE-2024-33561 | WordPress XStore theme <= 9.3.8 - Unauthenticated Broken Access Control vulnerability | 8theme | XStore | High | 7.5 | 2024-06-09 12:06:04 | Deep Dive |
| CVE-2024-33563 | WordPress XStore theme <= 9.3.8 - Broken Access Control vulnerability | 8theme | XStore | High | 7.6 | 2024-06-09 12:04:02 | Deep Dive |
| CVE-2024-33564 | WordPress XStore theme <= 9.3.8 - Arbitrary Option Update vulnerability | 8theme | XStore | High | 8.8 | 2024-06-09 12:02:52 | Deep Dive |
| CVE-2024-33560 | WordPress XStore theme <= 9.3.8 - Unauthenticated Local File Inclusion vulnerability | 8theme | XStore | Critical | 9.0 | 2024-06-04 13:07:44 | Deep Dive |
| CVE-2024-33557 | WordPress XStore Core plugin <= 5.3.8 - Local File Inclusion vulnerability | 8theme | XStore Core | High | 8.5 | 2024-06-04 13:05:52 | Deep Dive |
| CVE-2024-33552 | WordPress XStore Core plugin <= 5.3.8 - Unauthenticated Account Takeover vulnerability | 8theme | XStore Core | Critical | 9.8 | 2024-05-17 08:17:34 | Deep Dive |
| CVE-2024-33556 | WordPress XStore Core plugin <= 5.3.8 - Limited Arbitrary File Upload vulnerability | 8theme | XStore Core | High | 8.2 | 2024-05-17 06:12:45 | Deep Dive |
| CVE-2024-33558 | WordPress XStore Core plugin <= 5.3.5 - Limited Arbitrary File Download vulnerability | 8theme | XStore Core | Medium | 6.5 | 2024-04-29 08:15:19 | Deep Dive |