| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-63075 | WordPress Betheme theme <= 28.2 - Cross Site Scripting (XSS) vulnerability | muffingroup | Betheme | - | - | 2025-12-09 14:52:37 | Deep Dive |
| CVE-2025-9371 | Betheme <= 28.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'page_title' | MuffinGroup | Betheme | Medium | 6.4 | 2025-10-09 11:20:57 | Deep Dive |
| CVE-2025-7399 | Betheme <= 28.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | MuffinGroup | Betheme | Medium | 6.4 | 2025-08-06 03:41:01 | Deep Dive |
| CVE-2025-3077 | Betheme <= 28.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | MuffinGroup | Betheme | Medium | 6.4 | 2025-04-16 07:31:09 | Deep Dive |
| CVE-2025-0450 | Betheme <= 27.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS | MuffinGroup | Betheme | Medium | 6.4 | 2025-01-21 11:09:46 | Deep Dive |
| CVE-2024-5567 | Betheme | Responsive Multipurpose WordPress & WooCommerce Theme <= 27.5.5 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File | MuffinGroup | Betheme | Medium | 6.4 | 2024-09-13 06:47:28 | Deep Dive |
| CVE-2024-2694 | Betheme <= 27.5.6 - Authenticated (Contributor+) PHP Object Injection | MuffinGroup | Betheme | High | 8.8 | 2024-08-30 04:29:57 | Deep Dive |
| CVE-2024-3998 | Betheme | Responsive Multipurpose WordPress & WooCommerce Theme <= 27.5.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | MuffinGroup | Betheme | Medium | 6.4 | 2024-08-30 04:29:56 | Deep Dive |
| CVE-2023-39998 | WordPress BeTheme theme <= 27.1.1 - Author+ Broken Access Control vulnerability | Muffingroup | Betheme | High | 8.2 | 2024-06-19 12:05:48 | Deep Dive |
| CVE-2022-45356 | WordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerability | Muffingroup | Betheme | Medium | 5.4 | 2024-03-25 11:23:34 | Deep Dive |
| CVE-2022-45352 | WordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerability | Muffingroup | Betheme | Medium | 5.4 | 2024-03-25 11:21:53 | Deep Dive |
| CVE-2022-45351 | WordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerability | Muffingroup | Betheme | Medium | 5.4 | 2024-03-25 11:19:47 | Deep Dive |
| CVE-2022-45349 | WordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerability | Muffingroup | Betheme | Medium | 4.3 | 2024-03-25 11:18:02 | Deep Dive |
| CVE-2023-29101 | WordPress Betheme Theme <= 26.7.5 is vulnerable to Cross Site Scripting (XSS) | Muffingroup | Betheme | High | 7.1 | 2023-05-10 08:06:11 | Deep Dive |
| CVE-2022-45353 | WordPress Betheme theme <= 26.6.1 is vulnerable to Broken Access Control | Muffingroup | Betheme | Medium | 4.3 | 2023-01-14 10:53:27 | Deep Dive |
| CVE-2022-3747 | Becustom <= 1.0.5.2 - Cross-Site Request Forgery | MuffinGroup | Becustom | High | 8.8 | 2022-11-29 20:41:02 | Deep Dive |
| CVE-2022-45363 | WordPress Betheme premium theme <= 26.6.1 - Auth. Stored Cross-Site Scripting (XSS) vulnerability | Muffingroup | Betheme | Medium | 5.4 | 2022-11-22 07:45:08 | Deep Dive |
| CVE-2022-3861 | Betheme <= 26.5.1.4 - Authenticated (Subscriber+) PHP Object Injection | MuffinGroup | Betheme | High | 8.8 | 2022-11-21 12:45:46 | Deep Dive |
| CVE-2022-45077 | WordPress Betheme theme <= 26.5.1.4 - Auth. PHP Object Injection vulnerability | Muffingroup | Betheme (WordPress theme) | Medium | 6.3 | 2022-11-17 22:07:30 | Deep Dive |