Browse all 8 CVE security advisories affecting themebeez. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Themebeez is a WordPress theme provider offering website templates for businesses and individuals. Historically, their themes have been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation vulnerabilities, accounting for 8 CVEs to date. These weaknesses often stem from insufficient input validation and improper permission checks. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities across their products indicates a need for improved security practices in theme development. Users should implement strict access controls and keep installations updated to mitigate potential risks associated with these themes.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-24615 | WordPress Cream Magazine theme <= 2.1.10 - Broken Access Control vulnerability — Cream MagazineCWE-862 | 5.3 | Medium | 2026-01-23 |
This page lists every published CVE security advisory associated with themebeez. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.