Browse all 4 CVE security advisories affecting Cththemes. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Cththemes develops WordPress themes and templates for website creation. Historically, their products have frequently contained vulnerabilities including remote code execution, cross-site scripting, and privilege escalation issues, often stemming from insufficient input validation and improper access controls. The themes have been distributed through both official channels and third-party marketplaces, amplifying their exposure. With four CVEs currently documented, security researchers have consistently identified similar patterns across their product line, indicating potential systemic weaknesses in their development practices. No major public security incidents have been specifically attributed to Cththemes, though their widespread use increases potential impact if exploited.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-29430 | WordPress TheRoof Theme <= 1.0.3 is vulnerable to Cross Site Scripting (XSS) — TheRoofCWE-79 | 7.1 | High | 2023-06-26 |
This page lists every published CVE security advisory associated with Cththemes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.