All 4 CVE vulnerabilities found in The7, with AI-generated Chinese analysis, references, and POCs.
Vendor: Dream-Theme
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-63074 | WordPress The7 theme < 12.8.1.1 - Local File Inclusion vulnerability CWE-98 | 8.1AI | HighAI | 2025-12-09 |
| CVE-2025-63073 | WordPress The7 theme < 12.9.0 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.1AI | MediumAI | 2025-12-09 |
| CVE-2023-32123 | WordPress The7 Theme <= 11.7.3 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 7.1 | High | 2023-11-13 |
| CVE-2023-29100 | WordPress The7 Theme <= 11.6.0 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 7.1 | High | 2023-06-23 |
All 4 known CVE vulnerabilities affecting The7 with full Chinese analysis, references, and POCs where available.