Browse all 12 CVE security advisories affecting MyThemeShop. AI-powered Chinese analysis, POCs, and references for each vulnerability.
MyThemeShop develops WordPress themes and plugins to enhance website functionality and design. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting (XSS), privilege escalations, and insufficient input validation. The company has accumulated 12 CVEs, with several critical issues allowing attackers to execute arbitrary code or compromise administrative access. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities in their codebase suggests ongoing challenges in secure development practices. Users should maintain regular updates and implement additional security measures when using MyThemeShop products.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-37452 | WordPress Schema Lite theme <= 1.2.2 - Cross Site Request Forgery (CSRF) vulnerability — Schema LiteCWE-352 | 4.3 | Medium | 2025-01-02 |
This page lists every published CVE security advisory associated with MyThemeShop. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.