Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Edge-Themes — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting Edge-Themes. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Edge-Themes develops WordPress themes and templates for website customization, with 13 CVEs recorded to date. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and insecure direct object references. Security researchers have identified consistent patterns in their codebase, particularly in theme options and file handling mechanisms. While no major public security incidents have been widely reported, the accumulation of CVEs suggests ongoing security challenges in their development practices. Their themes' widespread adoption increases potential impact, making regular security updates and careful implementation crucial for users.

Top products by Edge-Themes: Edge CPT Alloggio Membership UrbanGo Membership Alloggio - Hotel Booking Cinerama Eldon Overworld Belletrist Archicon Gracey Kamperen Pelicula
CVE IDTitleCVSSSeverityPublished
CVE-2026-32512 WordPress Pelicula theme < 1.10 - PHP Object Injection vulnerability — PeliculaCWE-502 9.8 Critical2026-03-25
CVE-2026-32510 WordPress Kamperen theme < 1.3 - Arbitrary Object Instantiation vulnerability — KamperenCWE-502 5.4 Medium2026-03-25
CVE-2026-32506 WordPress Archicon theme < 1.7 - Arbitrary Object Instantiation vulnerability — ArchiconCWE-502 5.4 Medium2026-03-25
CVE-2026-32509 WordPress Gracey theme < 1.4 - Arbitrary Object Instantiation vulnerability — GraceyCWE-502 5.4 Medium2026-03-25
CVE-2025-69410 WordPress Belletrist theme <= 1.2 - Local File Inclusion vulnerability — BelletristCWE-98 8.1 High2026-02-20
CVE-2025-69057 WordPress Eldon theme <= 1.0 - Local File Inclusion vulnerability — EldonCWE-98 8.1 High2026-01-22
CVE-2025-69050 WordPress Overworld theme <= 1.3 - Local File Inclusion vulnerability — OverworldCWE-98 8.1 High2026-01-22
CVE-2025-68987 WordPress Cinerama theme <= 2.9 - Local File Inclusion vulnerability — CineramaCWE-98 7.5 High2025-12-30
CVE-2025-64287 WordPress Alloggio - Hotel Booking Theme theme <= 1.8 - Local File Inclusion vulnerability — Alloggio - Hotel BookingCWE-98 8.1 High2025-11-06
CVE-2025-62868 WordPress Edge CPT plugin <= 1.4 - Local File Inclusion vulnerability — Edge CPTCWE-98 8.1 High2025-10-24
CVE-2025-49889 WordPress Edge CPT plugin <= 1.4 - Local File Inclusion vulnerability — Edge CPTCWE-98 8.1 High2025-08-20
CVE-2025-3278 UrbanGo Membership <= 1.0.4 - Unauthenticated Privilege Escalation — UrbanGo MembershipCWE-269 9.8 Critical2025-04-19
CVE-2025-1638 Alloggio Membership <= 1.1 - Authentication Bypass via Social Login Account Takeover — Alloggio MembershipCWE-288 9.8 Critical2025-03-01

This page lists every published CVE security advisory associated with Edge-Themes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.