WordPress Child Themes plugin cross-site scripting vulnerability

WordPress Child Themes plugin is mainly used to simplify the creation and management of child themes, through automation tools to help users quickly generate child themes based on the parent theme. A cross-site scripting vulnerability exists in the WordPress Child Themes plugin, which stems from...

CVE-2025-52755

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chris Taylor Child Themes child-themes allows Reflected XSS.This issue affects Child Themes: from n/a through = 1.0.1...

EUVD-2025-35480

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chris Taylor Child Themes child-themes allows Reflected XSS.This issue affects Child Themes: from n/a through = 1.0.1...

CVE-2025-52755

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chris Taylor Child Themes child-themes allows Reflected XSS.This issue affects Child Themes: from n/a through = 1.0.1...

CVE-2025-52755 WordPress Child Themes plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chris Taylor Child Themes child-themes allows Reflected XSS.This issue affects Child Themes: from n/a through = 1.0.1...

CVE-2025-52755

CVE-2025-52755 describes a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Child Themes (component: child-themes ) that allows reflected XSS due to improper input handling during web page generation. Affected versions are listed as through 1.0.1 . The CVE records (NVD/Red Hat/EU ...

CVE-2025-52755 WordPress Child Themes plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chris Taylor Child Themes child-themes allows Reflected XSS.This issue affects Child Themes: from n/a through = 1.0.1...

WordPress plugin Child Themes 跨站脚本漏洞

WordPress Child Themes plugin is mainly used to simplify the creation and management of child themes, through automation tools to help users quickly generate child themes based on the parent theme. A cross-site scripting vulnerability exists in the WordPress Child Themes plugin, which stems from...

PT-2025-43242

Name of the Vulnerable Software and Affected Versions Chris Taylor Child Themes versions through 1.0.1 Description The software contains a flaw related to improper input handling during web page generation, which can lead to Reflected Cross-Site Scripting XSS. This allows an attacker to inject...

EUVD-2025-4026

Malicious code in bioql PyPI...

WordPress Child Themes plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Child Themes versions = 1.0.1...

CVE-2025-25093

Cross-Site Request Forgery CSRF vulnerability in paulswarthout Child Themes Helper child-themes-helper allows Path Traversal.This issue affects Child Themes Helper: from n/a through = 2.2.7...

CVE-2025-25093

Cross-Site Request Forgery CSRF vulnerability in paulswarthout Child Themes Helper child-themes-helper allows Path Traversal.This issue affects Child Themes Helper: from n/a through = 2.2.7...

CVE-2025-25093 WordPress Child Themes Helper plugin <= 2.2.7 - CSRF to Arbitrary File Deletion vulnerability

Cross-Site Request Forgery CSRF vulnerability in paulswarthout Child Themes Helper allows Path Traversal. This issue affects Child Themes Helper: from n/a through 2.2.7...

CVE-2025-25093

CVE-2025-25093 affects the WordPress plugin Child Themes Helper (versions n/a through 2.2.7). The issue is a Cross-Site Request Forgery (CSRF) vulnerability that enables path traversal leading to arbitrary file deletion. Public sources in the provided documents indicate the vulnerability is curre...

CVE-2025-25093 WordPress Child Themes Helper plugin <= 2.2.7 - CSRF to Arbitrary File Deletion vulnerability

Cross-Site Request Forgery CSRF vulnerability in paulswarthout Child Themes Helper child-themes-helper allows Path Traversal.This issue affects Child Themes Helper: from n/a through = 2.2.7...

WordPress plugin Child Themes Helper 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in PHP. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in the WordPress plug...

PT-2025-5925 · Unknown · Child Themes Helper

Name of the Vulnerable Software and Affected Versions: Child Themes Helper versions n/a through 2.2.7 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Path Traversal. This means an attacker could potentially trick a user into performing unintended actions on a...

WordPress Child Themes Helper plugin <= 2.2.7 - CSRF to Arbitrary File Deletion vulnerability

CSRF to Arbitrary File Deletion vulnerability discovered by Muhamad Agil Fachrian in WordPress Plugin Child Themes Helper versions = 2.2.7...

WordPress WPS Child Themes Generator plugin <= 1.1 - Path Traversal vulnerability

Path Traversal vulnerability found by Julio Potier in WordPress WPS Child Themes Generator plugin versions = 1.1. Solution Update the WordPress WPS Child Themes Generator plugin to the latest available version at least 1.2...