目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

themesflat 厂商漏洞列表 / CVE 中文分析 16

themesflat 厂商相关 16 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

Themesflat 是一家专注于 WordPress 主题开发的公司,其产品被广泛用于构建网站界面。历史上,其产品曾暴露多种安全漏洞,包括跨站脚本(XSS)、远程代码执行(RCE)和权限绕过等。截至最新统计,已有 16 条 CVE 记录,反映了其在安全防护方面的持续挑战。用户在使用其主题时应保持警惕,及时更新并实施安全加固措施,以降低潜在风险。

上位製品 themesflat: Themesflat Addons For Elementor themesflat-addons-for-elementor TF Woo Product Grid Addon For Elementor Themesflat Elementor
CVE IDタイトルCVSS深刻度公開日
CVE-2026-39500 WordPress themesflat-addons-for-elementor plugin <= 2.3.2 - Cross Site Scripting (XSS) vulnerability — themesflat-addons-for-elementorCWE-79 6.5 Medium2026-04-08
CVE-2025-69382 WordPress Themesflat Elementor plugin <= 1.0.1 - PHP Object Injection vulnerability — Themesflat ElementorCWE-502 9.8 Critical2026-02-20
CVE-2025-59007 WordPress TF Woo Product Grid Addon For Elementor Plugin <= 1.0.1 - Deserialization of untrusted data Vulnerability — TF Woo Product Grid Addon For ElementorCWE-502 9.8 Critical2025-10-22
CVE-2025-3275 Themesflat Addons For Elementor <= 2.2.5 - Authenticated (Contributor+) Stored Cross-Site Scripting — Themesflat Addons For ElementorCWE-79 6.4 Medium2025-04-19
CVE-2025-31567 WordPress Themesflat Addons For Elementor plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability — themesflat-addons-for-elementorCWE-79 6.5 Medium2025-03-31
CVE-2024-12205 Themesflat Addons For Elementor <= 2.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting — Themesflat Addons For ElementorCWE-79 6.4 Medium2025-01-08
CVE-2024-53796 WordPress Themesflat Addons For Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability — themesflat-addons-for-elementorCWE-79 6.5 Medium2024-12-06
CVE-2024-49310 WordPress Themesflat Addons For Elementor plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability — themesflat-addons-for-elementorCWE-79 6.5 Medium2024-10-17
CVE-2024-8516 Themesflat Addons For Elementor <= 2.2.1 - Authenticated (Contributor+) Information Exposure — Themesflat Addons For ElementorCWE-200 4.3 Medium2024-09-25
CVE-2024-8515 Themesflat Addons For Elementor <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Themesflat Addons For ElementorCWE-79 6.4 Medium2024-09-25
CVE-2024-4458 Themesflat Addons For Elementor <= 2.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via URLs — Themesflat Addons For ElementorCWE-79 6.4 Medium2024-06-06
CVE-2024-4212 Themesflat Addons For Elementor <= 2.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting in Multiple Widgets — Themesflat Addons For ElementorCWE-79 6.4 Medium2024-06-06
CVE-2024-4459 Themesflat Addons For Elementor <= 2.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Widget Titles — Themesflat Addons For ElementorCWE-87 6.4 Medium2024-06-06
CVE-2024-2922 Themesflat Addons For Elementor <= 2.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Widget Tags — Themesflat Addons For ElementorCWE-79 6.4 Medium2024-06-06
CVE-2024-35666 WordPress Themesflat Addons For Elementor plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability — Themesflat Addons For ElementorCWE-79 6.5 Medium2024-06-04
CVE-2023-37390 WordPress Themesflat Addons For Elementor Plugin <= 2.0.0 is vulnerable to PHP Object Injection — Themesflat Addons For ElementorCWE-502 8.3 High2023-12-19

本页汇总了 themesflat 厂商截至目前公开的全部 16 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。