Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

thembay — Vulnerabilities & Security Advisories 34

Browse all 34 CVE security advisories affecting thembay. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Thembay operates as a specialized platform facilitating digital asset transactions, primarily focusing on the exchange of cryptocurrency and related financial instruments. Security audits have identified thirty-four distinct Common Vulnerabilities and Exposures (CVEs) associated with its infrastructure, indicating a complex attack surface. Historically, the most prevalent vulnerability classes include remote code execution (RCE) and cross-site scripting (XSS), which often stem from inadequate input validation in web interfaces. Additionally, privilege escalation flaws have been documented, allowing unauthorized users to access administrative functions or sensitive data. These issues suggest systemic weaknesses in access control mechanisms and server-side processing. While no single catastrophic breach has been publicly confirmed as a direct result of these specific CVEs, the high volume of disclosed flaws highlights significant gaps in the platform’s security posture. Continuous monitoring and rigorous patch management are essential to mitigate the risk of exploitation in this high-value financial environment.

Top products by thembay: Diza Hara Besa Fana Zota Nika Aora Urna Greenmart Puca Ruza Maia Sapa Lasa Cena Store
CVE IDTitleCVSSSeverityPublished
CVE-2026-27381 WordPress Aora theme <= 1.3.15 - Local File Inclusion vulnerability — AoraCWE-98 8.1 High2026-03-05
CVE-2025-68545 WordPress Nika theme <= 1.2.14 - Local File Inclusion vulnerability — NikaCWE-98 8.1 High2026-02-20
CVE-2025-68539 WordPress Fana theme <= 1.1.35 - Local File Inclusion vulnerability — FanaCWE-98 8.1 High2026-02-20
CVE-2025-68536 WordPress Zota theme <= 1.3.14 - Local File Inclusion vulnerability — ZotaCWE-98 8.1 High2026-02-20
CVE-2025-68543 WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability — DizaCWE-98 8.1 High2026-02-20
CVE-2025-67981 WordPress Besa theme <= 2.3.15 - Local File Inclusion vulnerability — BesaCWE-98 8.1 High2026-02-20
CVE-2025-67980 WordPress Hara theme <= 1.2.17 - Local File Inclusion vulnerability — HaraCWE-98 8.1 High2026-02-20
CVE-2025-67982 WordPress Urna theme <= 2.5.12 - Local File Inclusion vulnerability — UrnaCWE-98 8.1 High2026-02-20
CVE-2025-68985 WordPress Aora theme <= 1.3.15 - Local File Inclusion vulnerability — AoraCWE-98 7.5 High2025-12-30
CVE-2025-68984 WordPress Puca theme <= 2.6.39 - Local File Inclusion vulnerability — PucaCWE-98 7.5 High2025-12-30
CVE-2025-68983 WordPress Greenmart theme <= 4.2.11 - Local File Inclusion vulnerability — GreenmartCWE-98 7.5 High2025-12-30
CVE-2025-68540 WordPress Fana theme <= 1.1.35 - Local File Inclusion vulnerability — FanaCWE-98 7.5 High2025-12-24
CVE-2025-68537 WordPress Zota theme <= 1.3.14 - Local File Inclusion vulnerability — ZotaCWE-98 7.5 High2025-12-24
CVE-2025-68546 WordPress Nika theme <= 1.2.14 - Local File Inclusion vulnerability — NikaCWE-98 7.5 High2025-12-23
CVE-2025-68544 WordPress Diza theme <= 1.3.15 - Local File Inclusion vulnerability — DizaCWE-98 7.5 High2025-12-23
CVE-2025-67532 WordPress Hara theme <= 1.2.17 - Local File Inclusion vulnerability — HaraCWE-98 7.5 High2025-12-09
CVE-2025-67528 WordPress Urna theme <= 2.5.12 - Local File Inclusion vulnerability — UrnaCWE-98 7.5 High2025-12-09
CVE-2025-67530 WordPress Besa theme <= 2.3.15 - Local File Inclusion vulnerability — BesaCWE-98 7.5 High2025-12-09
CVE-2025-48171 WordPress Cena Store <= 2.11.26 - Local File Inclusion Vulnerability — Cena StoreCWE-98 8.1 High2025-08-20
CVE-2025-54689 WordPress Urna Theme <= 2.5.7 - Local File Inclusion Vulnerability — UrnaCWE-98 8.1 High2025-08-14
CVE-2025-30992 WordPress Puca theme <= 2.6.33 - Local File Inclusion Vulnerability — PucaCWE-98 8.1 High2025-06-27
CVE-2025-49883 WordPress Greenmart theme <= 4.2.3 - Local File Inclusion Vulnerability — GreenmartCWE-98 8.1 High2025-06-27
CVE-2025-52729 WordPress Diza theme <= 1.3.9 - Local File Inclusion Vulnerability — DizaCWE-98 8.1 High2025-06-27
CVE-2025-49251 WordPress Fana theme <= 1.1.28 - Local File Inclusion Vulnerability — FanaCWE-98 8.1 High2025-06-17
CVE-2025-49252 WordPress Besa theme <= 2.3.8 - Local File Inclusion Vulnerability — BesaCWE-98 8.1 High2025-06-17
CVE-2025-49254 WordPress Nika theme <= 1.2.8 - Local File Inclusion Vulnerability — NikaCWE-98 8.1 High2025-06-17
CVE-2025-49253 WordPress Lasa theme <= 1.1 - Local File Inclusion Vulnerability — LasaCWE-98 8.1 High2025-06-17
CVE-2025-49255 WordPress Ruza theme <= 1.0.7 - Local File Inclusion Vulnerability — RuzaCWE-98 8.1 High2025-06-17
CVE-2025-49256 WordPress Sapa theme <= 1.1.14 - Local File Inclusion Vulnerability — SapaCWE-98 8.1 High2025-06-17
CVE-2025-49257 WordPress Zota theme <= 1.3.8 - Local File Inclusion Vulnerability — ZotaCWE-98 8.1 High2025-06-17

This page lists every published CVE security advisory associated with thembay. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.