| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-60228 | WordPress Knowledge Base theme <= 2.9 - PHP Object Injection vulnerability | designthemes | Knowledge Base | - | - | 2025-10-22 14:32:46 | Deep Dive |
| CVE-2025-60215 | WordPress Kriya theme <= 3.4 - PHP Object Injection Vulnerability | designthemes | Kriya | - | - | 2025-10-22 14:32:44 | Deep Dive |
| CVE-2025-60212 | WordPress VEDA Theme <= 4.2 - PHP Object Injection Vulnerability | designthemes | VEDA | - | - | 2025-10-22 14:32:44 | Deep Dive |
| CVE-2025-53423 | WordPress Triss theme <= 2.6 - Cross Site Scripting (XSS) vulnerability | designthemes | Triss | - | - | 2025-10-22 14:32:33 | Deep Dive |
| CVE-2025-32283 | WordPress Solar Energy theme <= 3.5 - PHP Object Injection Vulnerability | designthemes | Solar Energy | - | - | 2025-10-22 14:32:05 | Deep Dive |
| CVE-2025-31634 | WordPress Insurance theme <= 3.5 - PHP Object Injection Vulnerability | designthemes | Insurance | - | - | 2025-10-22 14:32:05 | Deep Dive |
| CVE-2025-31072 | WordPress Ofiz - Business Consulting Theme plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability | designthemes | Ofiz - WordPress Business Consulting Theme | High | 7.1 | 2025-07-16 11:28:06 | Deep Dive |
| CVE-2025-31422 | WordPress Visual Art | Gallery WordPress Theme <= 2.4 - PHP Object Injection Vulnerability | designthemes | Visual Art | Gallery WordPress Theme | High | 8.8 | 2025-07-16 11:28:06 | Deep Dive |
| CVE-2025-31427 | WordPress Invico - WordPress Consulting Business Theme <= 1.9 - Cross Site Scripting (XSS) Vulnerability | designthemes | Invico - WordPress Consulting Business Theme | High | 7.1 | 2025-07-16 11:28:05 | Deep Dive |
| CVE-2025-52828 | WordPress Red Art theme <= 3.8 - PHP Object Injection Vulnerability | designthemes | Red Art | High | 8.8 | 2025-07-04 11:17:53 | Deep Dive |
| CVE-2025-52833 | WordPress LMS theme <= 9.2 - SQL Injection Vulnerability | designthemes | LMS | Critical | 9.3 | 2025-07-04 11:17:51 | Deep Dive |
| CVE-2025-52799 | WordPress LMS theme <= 9.2 - Reflected Cross Site Scripting (XSS) Vulnerability | designthemes | LMS | High | 7.1 | 2025-06-27 11:52:23 | Deep Dive |
| CVE-2025-31924 | WordPress Crafts & Arts theme <= 2.5 - PHP Object Injection Vulnerability | designthemes | Crafts & Arts | High | 8.8 | 2025-05-23 12:44:01 | Deep Dive |
| CVE-2025-32284 | WordPress Pet World theme <= 2.8 - PHP Object Injection Vulnerability | designthemes | Pet World | High | 8.8 | 2025-05-23 12:44:00 | Deep Dive |
| CVE-2025-32293 | WordPress Finance Consultant theme <= 2.8 - PHP Object Injection Vulnerability | designthemes | Finance Consultant | High | 8.8 | 2025-05-23 12:43:58 | Deep Dive |
| CVE-2025-0845 | DesignThemes Core Features <= 4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | designthemes | DesignThemes Core Features | Medium | 6.4 | 2025-03-25 05:22:48 | Deep Dive |
| CVE-2024-13471 | DesignThemes Core Features <= 4.7 - Missing Authorization to Unauthenticated Arbitrary File Read via dt_process_imported_file | designthemes | DesignThemes Core Features | High | 7.5 | 2025-03-05 11:22:09 | Deep Dive |
| CVE-2024-13787 | VEDA - MultiPurpose WordPress Theme <= 4.2 - Authenticated (Subscriber+) PHP Object Injection | designthemes | VEDA - MultiPurpose WordPress Theme | Critical | 9.8 | 2025-03-05 09:21:49 | Deep Dive |