DejaVu 2.4 - dl-skin.php _mysite_delete_skin_zip Parameter Absolute Path Traversal Remote Directory Deletion

The dejavu WordPress theme was affected by a dl-skin.php mysitedeleteskinzip Parameter Absolute Path Traversal Remote Directory Deletion security vulnerability...

Blooog 1.1 - jplayer.swf Cross Site Scripting

The blooog WordPress theme was affected by a jplayer.swf Cross Site Scripting security vulnerability...

Folo - Cross Site Scripting

The folo WordPress theme was affected by a Cross Site Scripting security vulnerability...

Magnitudo - Arbitrary File Upload

The magnitudo WordPress theme was affected by an Arbitrary File Upload security vulnerability...

Toolbox 1.4 - flyer.php mls Parameter SQL Injection

The toolbox WordPress theme was affected by a flyer.php mls Parameter SQL Injection security vulnerability...

Caulk - path disclosure

The caulk WordPress theme was affected by a path disclosure security vulnerability...

Feather12 - Multiple Script Direct Request Path Disclosure

The feather12 WordPress theme was affected by a Multiple Script Direct Request Path Disclosure security vulnerability...

ThisWay - remote shell upload

The thisway WordPress theme was affected by a remote shell upload security vulnerability...

WPLocalPlaces - File Upload Remote Code Execution

The wplocalplaces WordPress theme was affected by a File Upload Remote Code Execution security vulnerability...

Imperial Fairytale - Multiple Script Direct Request Path Disclosure

The imperial-fairytale WordPress theme was affected by a Multiple Script Direct Request Path Disclosure security vulnerability...

Multiple vulnerabilities in Chocolate WP theme for WordPress

The dt-chocolate WordPress theme was affected by security vulnerability...

allure-real-estate-theme-for-real-estate <= 0.1.1 - XSS in ZeroClipboard.swf

The allure-real-estate-theme-for-real-estate WordPress theme was affected by a XSS in ZeroClipboard.swf security vulnerability...

Pinboard 1.0.6 - includes/theme-options.php tab Parameter XSS

The Pinboard WordPress theme was affected by an includes/theme-options.php tab Parameter XSS security vulnerability...

dt-chocolate - Image Open redirect

The dt-chocolate WordPress theme was affected by an Image Open redirect security vulnerability...

Coalition - Unspecified XSS

The coalition WordPress theme was affected by an Unspecified XSS security vulnerability...

vithy - Arbitrary File Upload

The vithy WordPress theme was affected by an Arbitrary File Upload security vulnerability...

dagda - Custom Background Shell Upload

The dagda WordPress theme was affected by a Custom Background Shell Upload security vulnerability...

I Love It - VideoJS Cross-Site Scripting

The i-love-it WordPress theme was affected by a VideoJS Cross-Site Scripting security vulnerability...

WordPress Crius Theme - Cross Site Scripting

This WordPress theme is prone to a cross-site scripting XSS vulnerability. It allows remote attackers to inject arbitrary script or HTML. Solution Update the theme...

Clockstone <= 1.2 - Arbitrary File Upload

The clockstone WordPress theme was affected by an upload.php Arbitrary File Upload security vulnerability...