All 5 CVE vulnerabilities found in Houzez Theme - Functionality, with AI-generated Chinese analysis, references, and POCs.
Vendor: Favethemes
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-24355 | WordPress Houzez Theme - Functionality plugin <= 4.2.6 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2026-01-22 |
| CVE-2025-62057 | WordPress Houzez Theme - Functionality plugin < 4.2.0 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.1 | - | 2025-11-06 |
| CVE-2025-62054 | WordPress Houzez Theme - Functionality plugin <= 4.1.8 - Local File Inclusion vulnerability CWE-98 | 9.8AI | CriticalAI | 2025-10-22 |
| CVE-2025-62058 | WordPress Houzez Theme - Functionality plugin < 4.2.0 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.1AI | MediumAI | 2025-10-22 |
| CVE-2024-5793 | Houzez Theme - Functionality <= 3.2.2 - Authenticated (Seller+) SQL Injection CWE-89 | 8.8 | High | 2024-07-09 |
All 5 known CVE vulnerabilities affecting Houzez Theme - Functionality with full Chinese analysis, references, and POCs where available.