All 5 CVE vulnerabilities found in Themify Ultra, with AI-generated Chinese analysis, references, and POCs.
Vendor: Themify
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-46146 | WordPress Themify Ultra theme <= 7.3.5 - Multiple Broken Access Control vulnerability CWE-862 | 8.3 | High | 2024-06-19 |
| CVE-2023-46148 | WordPress Themify Ultra theme <= 7.3.5 - Authenticated Arbitrary Settings Change vulnerability CWE-862 | 8.8 | High | 2024-06-19 |
| CVE-2023-46145 | WordPress Themify Ultra theme <= 7.3.5 - Authenticated Privilege Escalation vulnerability CWE-269 | 8.8 | High | 2024-05-17 |
| CVE-2023-46149 | WordPress Themify Ultra Theme <= 7.3.5 is vulnerable to Arbitrary File Upload CWE-434 | 9.9 | Critical | 2023-12-20 |
| CVE-2023-46147 | WordPress Themify Ultra Theme <= 7.3.5 is vulnerable to PHP Object Injection CWE-502 | 7.4 | High | 2023-12-20 |
All 5 known CVE vulnerabilities affecting Themify Ultra with full Chinese analysis, references, and POCs where available.