Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

raratheme — Vulnerabilities & Security Advisories 39

Browse all 39 CVE security advisories affecting raratheme. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Raratheme operates as a software vendor specializing in theme development and digital asset distribution, primarily serving web content management platforms. Its product portfolio has been associated with thirty-nine recorded Common Vulnerabilities and Exposures, indicating a significant historical security footprint. Analysis of these disclosures reveals a prevalence of remote code execution and cross-site scripting flaws, often stemming from insufficient input validation and improper sanitization of user-supplied data. Additionally, several incidents highlight privilege escalation vulnerabilities that allow unauthorized users to gain administrative access. These technical deficiencies suggest a pattern of inadequate security testing during the development lifecycle. While specific major breaches are not widely publicized in mainstream media, the high volume of CVEs points to systemic issues in code review and patch management processes. This profile underscores the necessity for rigorous security audits in third-party theme ecosystems to mitigate risks associated with widespread deployment.

Top products by raratheme: Preschool and Kindergarten Rara Business Education Zone Lawyer Landing Page Perfect Portfolio Elegant Pink Construction Landing Page JobScout Benevolent Travel Agency Bakes And Cakes App Landing Page Travel Diaries The Minimal Influencer The Conference Rara Academic Pranayama Yoga Ridhi Numinous Restaurant and Cafe Business One Page Digital Download Book Landing Page Kalon Rara One Click Demo Import (WordPress plugin) Spa and Salon Chic Lite UltraLight
CVE IDTitleCVSSSeverityPublished
CVE-2026-25009 WordPress Education Zone theme <= 1.3.8 - Broken Access Control vulnerability — Education ZoneCWE-862 6.5 Medium2026-03-25
CVE-2026-32487 WordPress Lawyer Landing Page theme <= 1.2.7 - Broken Access Control vulnerability — Lawyer Landing PageCWE-862 5.3 Medium2026-03-13
CVE-2026-32380 WordPress Numinous theme <= 1.3.0 - Broken Access Control vulnerability — NuminousCWE-862 5.3 Medium2026-03-13
CVE-2026-32383 WordPress Ridhi theme <= 1.1.2 - Broken Access Control vulnerability — RidhiCWE-862 5.3 Medium2026-03-13
CVE-2026-32382 WordPress Digital Download theme <= 1.1.4 - Broken Access Control vulnerability — Digital DownloadCWE-862 5.3 Medium2026-03-13
CVE-2026-32381 WordPress App Landing Page theme <= 1.2.2 - Broken Access Control vulnerability — App Landing PageCWE-862 5.3 Medium2026-03-13
CVE-2026-32378 WordPress Book Landing Page theme <= 1.2.7 - Broken Access Control vulnerability — Book Landing PageCWE-862 5.3 Medium2026-03-13
CVE-2026-32377 WordPress Pranayama Yoga theme <= 1.2.2 - Broken Access Control vulnerability — Pranayama YogaCWE-862 5.3 Medium2026-03-13
CVE-2026-32379 WordPress Rara Academic theme <= 1.2.2 - Broken Access Control vulnerability — Rara AcademicCWE-862 5.3 Medium2026-03-13
CVE-2026-32375 WordPress Travel Diaries theme <= 1.2.4 - Broken Access Control vulnerability — Travel DiariesCWE-862 5.3 Medium2026-03-13
CVE-2026-32376 WordPress Kalon theme <= 1.2.9 - Broken Access Control vulnerability — KalonCWE-862 5.3 Medium2026-03-13
CVE-2026-32371 WordPress Elegant Pink theme <= 1.3.3 - Broken Access Control vulnerability — Elegant PinkCWE-862 5.3 Medium2026-03-13
CVE-2026-32370 WordPress Influencer theme <= 1.1.7 - Broken Access Control vulnerability — InfluencerCWE-862 5.3 Medium2026-03-13
CVE-2026-32374 WordPress The Minimal theme <= 1.2.9 - Broken Access Control vulnerability — The MinimalCWE-862 5.3 Medium2026-03-13
CVE-2026-32345 WordPress Perfect Portfolio theme <= 1.2.4 - Broken Access Control vulnerability — Perfect PortfolioCWE-862 5.3 Medium2026-03-13
CVE-2026-32346 WordPress Travel Agency theme <= 1.5.5 - Broken Access Control vulnerability — Travel AgencyCWE-862 5.3 Medium2026-03-13
CVE-2026-32347 WordPress Restaurant and Cafe theme <= 1.2.5 - Broken Access Control vulnerability — Restaurant and CafeCWE-862 5.3 Medium2026-03-13
CVE-2026-32338 WordPress Construction Landing Page theme <= 1.4.1 - Broken Access Control vulnerability — Construction Landing PageCWE-862 5.3 Medium2026-03-13
CVE-2026-32341 WordPress Benevolent theme <= 1.3.9 - Broken Access Control vulnerability — BenevolentCWE-862 5.3 Medium2026-03-13
CVE-2026-32337 WordPress Preschool and Kindergarten theme <= 1.2.5 - Broken Access Control vulnerability — Preschool and KindergartenCWE-862 5.3 Medium2026-03-13
CVE-2026-32340 WordPress Business One Page theme <= 1.3.2 - Broken Access Control vulnerability — Business One PageCWE-862 5.3 Medium2026-03-13
CVE-2026-32339 WordPress Bakes And Cakes theme <= 1.2.9 - Broken Access Control vulnerability — Bakes And CakesCWE-862 5.3 Medium2026-03-13
CVE-2026-32334 WordPress JobScout theme <= 1.1.7 - Broken Access Control vulnerability — JobScoutCWE-862 5.3 Medium2026-03-13
CVE-2026-32335 WordPress The Conference theme <= 1.2.5 - Broken Access Control vulnerability — The ConferenceCWE-862 5.3 Medium2026-03-13
CVE-2026-32336 WordPress Rara Business theme <= 1.3.0 - Broken Access Control vulnerability — Rara BusinessCWE-862 5.3 Medium2026-03-13
CVE-2026-25374 WordPress Spa and Salon theme <= 1.3.2 - Broken Access Control vulnerability — Spa and SalonCWE-862 5.3 Medium2026-02-19
CVE-2025-23998 WordPress UltraLight theme <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability — UltraLightCWE-79 7.1 High2025-01-21
CVE-2024-37937 WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability — Rara BusinessCWE-352 4.3 Medium2025-01-02
CVE-2024-37508 WordPress Construction Landing Page theme <= 1.3.5 - Cross Site Request Forgery (CSRF) vulnerability — Construction Landing PageCWE-352 4.3 Medium2025-01-02
CVE-2024-37503 WordPress Lawyer Landing Page theme <= 1.2.4 - Cross Site Request Forgery (CSRF) vulnerability — Lawyer Landing PageCWE-352 4.3 Medium2025-01-02

This page lists every published CVE security advisory associated with raratheme. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.