Browse all 23 CVE security advisories affecting Select-Themes. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Select-Themes operates primarily as a provider of WordPress themes and plugins, catering to web developers and site owners seeking pre-designed templates for content management systems. Security audits have identified twenty-three distinct Common Vulnerabilities and Exposures (CVEs) associated with its software ecosystem, highlighting significant risks in its codebase. Historically, the most prevalent vulnerability classes include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from insufficient input validation and improper sanitization of user-supplied data. Additionally, instances of privilege escalation have been documented, allowing unauthorized users to gain administrative access. These flaws frequently arise from outdated coding practices and a lack of rigorous security testing prior to release. The accumulation of these CVEs suggests a pattern of neglecting critical security patches, posing substantial threats to websites relying on Select-Themes products without timely updates or additional security hardening measures.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25457 | WordPress Mixtape theme <= 2.1 - Local File Inclusion vulnerability — MixtapeCWE-98 | 8.1 | High | 2026-03-25 |
This page lists every published CVE security advisory associated with Select-Themes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.