Browse all 4 CVE security advisories affecting uixthemes. AI-powered Chinese analysis, POCs, and references for each vulnerability.
uixthemes is a UI component library focused on providing pre-built themes for web applications. Historically, the project has been associated with multiple cross-site scripting (XSS) vulnerabilities, often stemming from improper input sanitization in theme parameters. While remote code execution (RCE) and privilege escalation vulnerabilities have been less common, the persistent XSS issues highlight ongoing security challenges in handling user-supplied data. The four recorded CVEs primarily reflect these injection-based weaknesses, suggesting a pattern of insufficient validation in theme customization features. No major security incidents have been publicly documented beyond these individual vulnerability disclosures.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-67547 | WordPress Konte theme <= 2.4.6 - Broken Access Control vulnerability — KonteCWE-862 | 6.5 | Medium | 2026-02-20 |
This page lists every published CVE security advisory associated with uixthemes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.