Browse all 3 CVE security advisories affecting Rescue Themes. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Rescue Themes is a WordPress theme provider offering pre-designed templates for websites, primarily used by small businesses and bloggers. Historically, the themes have been susceptible to multiple security vulnerabilities including remote code execution, cross-site scripting, and privilege escalation. With three CVEs documented, these issues often stem from insufficient input validation and improper access controls. Notable characteristics include the widespread use of outdated components and inconsistent security practices across the theme portfolio. While no major public incidents have been widely reported, the consistent vulnerability pattern suggests potential risks for unpatched installations, particularly affecting users who fail to update regularly.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62110 | WordPress Rescue Shortcodes plugin <= 3.3 - Cross Site Scripting (XSS) vulnerability — Rescue ShortcodesCWE-79 | 6.5 | Medium | 2026-04-23 |
| CVE-2025-39528 | WordPress Rescue Shortcodes plugin <= 3.1 - Cross Site Scripting (XSS) vulnerability — Rescue ShortcodesCWE-79 | 6.5 | Medium | 2025-04-16 |
| CVE-2023-41728 | WordPress Rescue Shortcodes Plugin <= 2.5 is vulnerable to Cross Site Scripting (XSS) — Rescue ShortcodesCWE-79 | 6.5 | Medium | 2023-10-02 |
This page lists every published CVE security advisory associated with Rescue Themes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.