Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

sparklewpthemes — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting sparklewpthemes. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products sparklewpthemes:Blogger BuzzSparkle Demo ImporterChankheHello FSE BlogFitness ParkSpark MultipurposeEducenterAppzendKingcabsSparkle FSEConstruction LightHello FSEFitness FSE
CVE IDTitleCVSSSeverityPaused
CVE-2026-25394 WordPress Fitness FSE theme <= 1.0.6 - Broken Access Control vulnerability — Fitness FSECWE-862 9.1AICriticalAI2026-02-19
CVE-2026-25393 WordPress Hello FSE theme <= 1.0.6 - Broken Access Control vulnerability — Hello FSECWE-862 8.2AIHighAI2026-02-19
CVE-2025-62960 WordPress Construction Light theme <= 1.6.7 - Broken Access Control vulnerability — Construction LightCWE-862 5.4 Medium2025-12-18
CVE-2025-62961 WordPress Sparkle FSE theme <= 1.0.9 - Broken Access Control vulnerability — Sparkle FSECWE-862 5.4 Medium2025-12-18
CVE-2025-7058 Kingcabs <= 1.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via progressbarLayout Parameter — KingcabsCWE-79 6.4 Medium2025-12-13
CVE-2025-54680 WordPress Blogger Buzz Theme theme <= 1.2.6 - Cross Site Scripting (XSS) Vulnerability — Blogger BuzzCWE-79 6.5 Medium2025-08-14
CVE-2025-5587 Appzend <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via progressbarLayout Parameter — AppzendCWE-79 6.4 Medium2025-07-29
CVE-2025-5529 Educenter <= 1.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting — EducenterCWE-79 6.4 Medium2025-07-26
CVE-2025-49970 WordPress Hello FSE Blog theme <= 1.0.6 - Broken Access Control Vulnerability — Hello FSE BlogCWE-862 4.3 Medium2025-06-20
CVE-2025-50030 WordPress Spark Multipurpose theme <= 1.0.7 - Cross Site Scripting (XSS) Vulnerability — Spark MultipurposeCWE-79 6.5 Medium2025-06-20
CVE-2025-50033 WordPress Fitness Park theme <= 1.1.1 - Cross Site Scripting (XSS) Vulnerability — Fitness ParkCWE-79 6.5 Medium2025-06-20
CVE-2023-28416 WordPress Chankhe theme <= 1.0.5 - Authenticated Arbitrary Plugin Activation vulnerability — ChankheCWE-862 4.3 Medium2024-12-09
CVE-2023-30476 WordPress Blogger Buzz theme <= 1.2.2 - Broken Access Control vulnerability — Blogger BuzzCWE-862 4.3 Medium2024-12-09
CVE-2024-6120 Sparkle Demo Importer <= 1.4.7 - Missing Authorization to Authorized(Subscriber+) Post/Pages/Attachements Deletion and Demo Data Import — Sparkle Demo ImporterCWE-862 6.5 Medium2024-06-21

This page lists every published CVE security advisory associated with sparklewpthemes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.