Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Plugin-planetTheme Switcha

2 matches found

CVE
CVEadded 2023/10/20 4:30 a.m.75 views

CVE-2023-5614

CVE-2023-5614 – Theme Switcha for WordPress is a stored XSS vulnerability in the shortcode shortname theme_switcha_list, present in all versions up to 3.3. Attack requires authentication at contributor level or higher. The issue stems from insufficient input sanitization and output escaping on us...

6.4CVSS5.2AI score0.00092EPSS
CVE
CVEadded 2025/04/22 9:53 a.m.51 views

CVE-2025-46239

CVE-2025-46239 affects Theme Switcha (WordPress plugin) up to version 3.4. It is a Stored XSS caused by improper input neutralization during web page generation. The impact is that malicious input could execute scripts in users’ browsers when viewing affected pages. Mitigation: update to a versio...

6.5CVSS7.2AI score0.00122EPSS