Browse all 13 CVE security advisories affecting themegrill. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ThemeGrill develops WordPress themes and plugins for website building, with 13 CVEs recorded. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and improper access controls. Notable security characteristics include regular but inconsistent patching cycles, with some critical vulnerabilities remaining unaddressed for extended periods. While no major public security incidents have been widely documented, the pattern of recurring flaws in their codebase suggests ongoing challenges in secure development practices, potentially exposing users to significant risks if timely updates are not applied.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-9331 | Spacious <= 1.9.11 - Missing Authorization to Autheticated (Subscriber+) Demo Data Import — SpaciousCWE-862 | 4.3 | Medium | 2025-08-22 |
This page lists every published CVE security advisory associated with themegrill. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.