Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ColorMag — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in ColorMag, with AI-generated Chinese analysis, references, and POCs.

Vendor: themegrill

CVE IDTitleCVSSSeverityPublished
CVE-2025-9202 ColorMag <= 4.0.19 - Missing Authorization to Authenticated (Subscriber+) ThemeGrill Demo Importer Plugin Installation CWE-862 4.3 Medium2025-08-20
CVE-2024-2500 ColorMag <= 3.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Display Name CWE-79 6.4 Medium2024-03-22
CVE-2024-0679 ColorMag <= 3.1.2 - Missing Authorization to Arbitrary Plugin Installation CWE-862 6.5 Medium2024-01-20

All 3 known CVE vulnerabilities affecting ColorMag with full Chinese analysis, references, and POCs where available.