Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Elated-Themes — Vulnerabilities & Security Advisories 31

Browse all 31 CVE security advisories affecting Elated-Themes. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Elated-Themes operates as a software vendor specializing in digital themes and plugins, primarily targeting content management systems. Historical security audits reveal a pattern of critical vulnerabilities, with thirty-one Common Vulnerabilities and Exposures (CVEs) currently documented. The most prevalent flaw types include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and Privilege Escalation, indicating systemic weaknesses in input validation and access control mechanisms. These defects often stem from insufficient sanitization of user-supplied data and improper handling of administrative functions. While specific major incidents involving widespread exploitation are not explicitly detailed in public records, the high volume of disclosed CVEs suggests a consistent history of security lapses. This profile highlights the necessity for rigorous code review and proactive patch management to mitigate the inherent risks associated with the vendor’s software ecosystem.

Top products by Elated-Themes: Search & Go The Aisle Sweet Jane Laurent Askka Leroux The Aisle Core Gaspard Roisin Amoli NeoBeat Gioia Lella Elated Listing Zentrum Etchy Helvig Academist Membership FindAll Laurent Core Töbel Neo Ocular Frappé Academist Savory Search & Go - Directory WordPress Theme
CVE IDTitleCVSSSeverityPublished
CVE-2026-32507 WordPress Leroux theme < 1.4 - Arbitrary Object Instantiation vulnerability — LerouxCWE-502 5.4 Medium2026-03-25
CVE-2026-27048 WordPress The Aisle Core plugin <= 2.0.5 - Local File Inclusion vulnerability — The Aisle CoreCWE-98 8.1 High2026-03-25
CVE-2026-24971 WordPress Search & Go theme <= 2.8 - Privilege Escalation vulnerability — Search & GoCWE-266 9.8 Critical2026-03-25
CVE-2026-24972 WordPress Elated Listing plugin <= 1.4 - Broken Access Control vulnerability — Elated ListingCWE-862 6.5 Medium2026-03-25
CVE-2026-22512 WordPress Roisin theme <= 1.2.1 - Local File Inclusion vulnerability — RoisinCWE-98 8.1 High2026-03-25
CVE-2026-22511 WordPress NeoBeat theme <= 1.2 - Local File Inclusion vulnerability — NeoBeatCWE-98 8.1 High2026-03-25
CVE-2026-22506 WordPress Amoli theme <= 1.0 - Local File Inclusion vulnerability — AmoliCWE-98 8.1 High2026-03-25
CVE-2026-22509 WordPress Gioia theme <= 1.4 - Local File Inclusion vulnerability — GioiaCWE-98 8.1 High2026-03-25
CVE-2026-22498 WordPress Laurent theme <= 3.1 - Local File Inclusion vulnerability — LaurentCWE-98 8.1 High2026-03-25
CVE-2026-22499 WordPress Lella theme <= 1.2 - Local File Inclusion vulnerability — LellaCWE-98 8.1 High2026-03-25
CVE-2026-22493 WordPress Gaspard theme <= 1.3 - Local File Inclusion vulnerability — GaspardCWE-98 8.1 High2026-03-25
CVE-2026-22478 WordPress FindAll theme <= 1.4 - Local File Inclusion vulnerability — FindAllCWE-98 8.1 High2026-03-05
CVE-2026-22476 WordPress Etchy theme <= 1.0 - Local File Inclusion vulnerability — EtchyCWE-98 8.1 High2026-03-05
CVE-2026-22456 WordPress Askka theme <= 1.0 - Local File Inclusion vulnerability — AskkaCWE-98 8.1 High2026-03-05
CVE-2026-22441 WordPress Zentrum theme <= 1.0 - Local File Inclusion vulnerability — ZentrumCWE-98 8.1 High2026-03-05
CVE-2026-22436 WordPress Helvig theme <= 1.0 - Local File Inclusion vulnerability — HelvigCWE-98 8.1 High2026-03-05
CVE-2026-22425 WordPress Sweet Jane theme <= 1.2 - Local File Inclusion vulnerability — Sweet JaneCWE-98 8.1 High2026-03-05
CVE-2026-24609 WordPress Laurent theme <= 3.1 - Local File Inclusion vulnerability — LaurentCWE-98 7.5 High2026-01-23
CVE-2026-24608 WordPress Laurent Core plugin <= 2.4.1 - Local File Inclusion vulnerability — Laurent CoreCWE-98 7.5 High2026-01-23
CVE-2026-22426 WordPress Sweet Jane theme <= 1.2 - Insecure Direct Object References (IDOR) vulnerability — Sweet JaneCWE-639 5.4 Medium2026-01-22
CVE-2025-69049 WordPress Töbel theme <= 1.6 - Local File Inclusion vulnerability — TöbelCWE-98 8.1 High2026-01-22
CVE-2025-69005 WordPress Search & Go theme <= 2.8 - Local File Inclusion vulnerability — Search & GoCWE-98 8.1 High2026-01-22
CVE-2025-67941 WordPress The Aisle theme < 2.9.1 - Local File Inclusion vulnerability — The AisleCWE-98 8.1 High2026-01-22
CVE-2025-67920 WordPress Neo Ocular theme < 1.2 - Local File Inclusion vulnerability — Neo OcularCWE-98 8.1 High2026-01-08
CVE-2025-69083 WordPress Frappé theme <= 1.8 - Local File Inclusion vulnerability — FrappéCWE-98 8.1 High2026-01-06
CVE-2025-66534 WordPress The Aisle theme <= 2.9 - Broken Access Control vulnerability — The AisleCWE-862 4.3 Medium2025-12-09
CVE-2025-62067 WordPress Savory theme <= 2.5 - Local File Inclusion vulnerability — SavoryCWE-98 8.1 High2025-11-06
CVE-2025-62064 WordPress Search & Go theme <= 2.7 - Broken Authentication vulnerability — Search & GoCWE-288 9.8 Critical2025-11-06
CVE-2025-62055 WordPress Academist theme < 1.3 - Local File Inclusion vulnerability — AcademistCWE-98 8.1 High2025-11-06
CVE-2025-11522 Search & Go - Directory WordPress Theme <= 2.7 - Authentication Bypass to Privilege Escalation via Account Takeover — Search & Go - Directory WordPress ThemeCWE-288 9.8 Critical2025-10-09

This page lists every published CVE security advisory associated with Elated-Themes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.