All 5 CVE vulnerabilities found in TheGem (Elementor), with AI-generated Chinese analysis, references, and POCs.
Vendor: CodexThemes
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2023-32238 | WordPress TheGem theme < 5.8.1.1 - Broken Access Control vulnerability | 5.4 | Medium | 2025-12-29 |
| CVE-2025-62041 | WordPress TheGem (Elementor) theme <= 5.10.5.1 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.1 | - | 2025-11-06 |
| CVE-2025-62012 | WordPress TheGem (Elementor) theme <= 5.10.5 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.1 | - | 2025-11-06 |
| CVE-2025-60096 | WordPress TheGem (Elementor) Theme <= 5.10.5 - Broken Access Control Vulnerability CWE-862 | 5.4 | Medium | 2025-09-26 |
| CVE-2023-32237 | Auth. Stored Cross-Site Scripting (XSS) vulnerability in TheGem theme by CodexThemes CWE-79 | 6.5 | Medium | 2024-03-26 |
All 5 known CVE vulnerabilities affecting TheGem (Elementor) with full Chinese analysis, references, and POCs where available.