| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-10051 | Demo Import Kit <= 1.1.0 - Authenticated (Admin+) Arbitrary File Upload | themeinwp | Demo Import Kit | High | 7.2 | 2025-10-15 08:25:54 | Deep Dive |
| CVE-2024-8790 | Social Share With Floating Bar <= 1.0.3 - Reflected Cross-Site Scripting | themeinwp | Social Share With Floating Bar | Medium | 6.1 | 2024-10-18 04:32:51 | Deep Dive |
| CVE-2024-2109 | Booster Extension <= 1.2.0 - Basic Information Exposure via booster_extension_authorbox_shortcode_display | themeinwp | Booster Extension | Medium | 5.3 | 2024-05-02 16:52:22 | Deep Dive |
| CVE-2024-31938 | WordPress NewsXpress theme <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerability | Themeinwp | NewsXpress | Medium | 4.3 | 2024-04-15 09:23:02 | Deep Dive |
| CVE-2024-31386 | Multiple WordPress themes affected by Cross-Site Request Forgery vulnerability | Hidekazu Ishikawa | X-T9 | Medium | 4.3 | 2024-04-10 18:47:28 | Deep Dive |