Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

kutethemes — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting kutethemes. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Kutethemes develops WordPress themes and website templates for businesses and developers. Historically, their products have frequently contained cross-site scripting (XSS) vulnerabilities, remote code execution (RCE) flaws, and privilege escalation issues, often stemming from insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the 10 CVEs on record indicate a pattern of security weaknesses that could allow attackers to compromise websites, steal data, or gain unauthorized access. Users are advised to maintain regular updates and implement additional security measures when using these themes.

Top products by kutethemes: Boutique KuteShop Biolife Uminex DukaMarket TechOne Armania
CVE IDTitleCVSSSeverityPublished
CVE-2026-39629 WordPress Uminex theme <= 1.0.9 - Arbitrary Shortcode Execution vulnerability — UminexCWE-80 5.3 Medium2026-04-08
CVE-2026-39628 WordPress DukaMarket theme <= 1.3.0 - Arbitrary Shortcode Execution vulnerability — DukaMarketCWE-80 5.3 Medium2026-04-08
CVE-2026-39624 WordPress Biolife theme <= 3.2.3 - Arbitrary Shortcode Execution vulnerability — BiolifeCWE-862 5.3 Medium2026-04-08
CVE-2026-39625 WordPress TechOne theme <= 3.0.3 - Arbitrary Shortcode Execution vulnerability — TechOneCWE-80 5.3 Medium2026-04-08
CVE-2026-39623 WordPress Biolife theme <= 3.2.3 - Local File Inclusion vulnerability — BiolifeCWE-98 7.5 High2026-04-08
CVE-2026-39626 WordPress Armania theme <= 1.4.8 - Arbitrary Shortcode Execution vulnerability — ArmaniaCWE-80 5.3 Medium2026-04-08
CVE-2026-39611 WordPress KuteShop theme <= 4.2.9 - Local File Inclusion vulnerability — KuteShopCWE-98 7.5 High2026-04-08
CVE-2026-39612 WordPress KuteShop theme <= 4.2.9 - Arbitrary Shortcode Execution vulnerability — KuteShopCWE-862 5.3 Medium2026-04-08
CVE-2026-39613 WordPress Boutique theme <= 2.3.3 - Local File Inclusion vulnerability — BoutiqueCWE-98 7.5 High2026-04-08
CVE-2026-25342 WordPress Boutique theme < 2.4.6 - Reflected Cross Site Scripting (XSS) vulnerability — BoutiqueCWE-79 7.1 High2026-03-25

This page lists every published CVE security advisory associated with kutethemes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.