Browse all 3 CVE security advisories affecting iThemes. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49895 | WordPress School Management Plugin <= 93.2.0 - Broken Access Control Vulnerability — School ManagementCWE-862 | 6.5 | Medium | 2025-08-16 |
| CVE-2022-45825 | WordPress WPComplete Plugin <= 2.9.4 is vulnerable to Cross Site Scripting (XSS) — WPCompleteCWE-79 | 7.1 | High | 2023-03-28 |
| CVE-2022-31474 | WordPress BackupBuddy Plugin 8.5.8.0-8.7.4.1 is vulnerable to Directory Traversal — BackupBuddyCWE-22 | 7.5 | High | 2023-03-13 |
This page lists every published CVE security advisory associated with iThemes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.