5 matches found
CVE-2026-57730
CVE-2026-57730 concerns the WordPress Flatsome theme (
CVE-2026-31915 WordPress Flatsome theme <= 3.19.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in UX-themes Flatsome flatsome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flatsome: from n/a through = 3.19.6...
CVE-2026-28083
The CVE-2026-28083 entry concerns the UX-themes Flatsome WordPress theme with a Stored XSS vulnerability caused by improper neutralization of input during web page generation. Affected versions are Flatsome for WordPress up to 3.20.5 (and variants noted in other records as up to 3.20.1); the unde...
WordPress Flatsome Theme <= 3.18.7 is vulnerable to Cross Site Scripting (XSS)
Software Flatsome Type Theme Vulnerable versions = 3.18.7 Fixed in 3.19.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5346 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7e178a33c38d Credits wesley wcraft Required privile...
WordPress Flatsome Theme <= 3.16.8 is vulnerable to Cross Site Scripting (XSS)
Software Flatsome Type Theme Vulnerable versions = 3.16.8 Fixed in 3.17.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-28994 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c500cd25ae6b Credits Rafie Muhammad Patchsta...