Browse all 6 CVE security advisories affecting themepassion. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-22524 | WordPress Legacy Admin plugin <= 9.5 - Reflected Cross Site Scripting (XSS) vulnerability — Legacy AdminCWE-79 | 7.1 | High | 2026-03-25 |
| CVE-2026-22523 | WordPress Ultra WordPress Admin plugin <= 11.7 - Reflected Cross Site Scripting (XSS) vulnerability — Ultra WordPress AdminCWE-79 | 7.1 | High | 2026-03-25 |
| CVE-2025-69180 | WordPress Ultra Portfolio plugin <= 6.7 - SQL Injection vulnerability — Ultra PortfolioCWE-89 | 8.5 | High | 2026-01-22 |
| CVE-2025-49420 | WordPress Ultra Portfolio - WordPress Plugin <= 6.7 - Cross Site Scripting (XSS) Vulnerability — Ultra PortfolioCWE-79 | 7.1 | High | 2025-08-20 |
| CVE-2025-49422 | WordPress Support Ticket Plugin <= 1.9 - Privilege Escalation Vulnerability — Support TicketCWE-266 | 9.8 | Critical | 2025-08-20 |
| CVE-2025-49424 | WordPress Support Ticket Plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability — Support TicketCWE-79 | 7.1 | High | 2025-08-20 |
This page lists every published CVE security advisory associated with themepassion. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.