CVE-2025-54002 WordPress xSmart theme <= 1.2.9.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Jthemes xSmart xsmart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects xSmart: from n/a through = 1.2.9.4...

CVE-2025-50007 WordPress xSmart theme <= 1.2.9.4 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in Jthemes xSmart xsmart allows Privilege Escalation.This issue affects xSmart: from n/a through = 1.2.9.4...

CVE-2025-50007

CVE-2025-50007 is an Incorrect Privilege Assignment vulnerability in the WordPress theme xSmart (Jthemes) affecting versions up to and including 1.2.9.4. Red Hat and NVD entries, mirrored by CVE lists (CVE-2025-50007) and the PatchStack advisory, describe it as a Privilege Escalation risk. The ro...

CVE-2025-62936 WordPress xSmart theme <= 1.2.9.4 - Content Injection vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Jthemes xSmart xsmart allows Code Injection.This issue affects xSmart: from n/a through = 1.2.9.4...