| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-1870 | Thim Kit for Elementor <= 1.3.7 - Missing Authorization to Unauthenticated Private Course Disclosure | thimpress | Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor | Medium | 5.3 | 2026-03-14 13:24:42 | Deep Dive |
| CVE-2025-67594 | WordPress Thim Elementor Kit plugin <= 1.3.3 - Insecure Direct Object References (IDOR) vulnerability | ThimPress | Thim Elementor Kit | Medium | 4.3 | 2025-12-09 14:14:18 | Deep Dive |
| CVE-2025-24725 | WordPress Thim Elementor Kit Plugin <= 1.2.8 - Broken Access Control vulnerability | ThimPress | Thim Elementor Kit | Medium | 4.3 | 2025-01-24 17:25:16 | Deep Dive |
| CVE-2025-22312 | WordPress Thim Elementor Kit plugin <= 1.2.9 - Cross Site Scripting (XSS) vulnerability | ThimPress | Thim Elementor Kit | Medium | 6.5 | 2025-01-07 10:48:55 | Deep Dive |
| CVE-2024-4329 | Thim Elementor Kit <= 1.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter | thimpress | Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor | Medium | 6.4 | 2024-05-11 06:43:41 | Deep Dive |
| CVE-2024-34415 | WordPress Thim Elementor Kit plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability | ThimPress | Thim Elementor Kit | Medium | 6.5 | 2024-05-09 11:34:52 | Deep Dive |