2 matches found
CVE-2025-30881
CVE-2025-30881 affects the WordPress theme Big Store (ThemeHunk) and is disclosed as a Missing Authorization vulnerability for Big Store versions up to 2.0.8. Connected Wordfence content confirms the issue is real for Big Store and shows a Patched status, indicating a fix exists in a subsequent r...
CVE-2023-27431
CVE-2023-27431 is a CSRF flaw in the WordPress ThemeHunk Big Store theme (<= 1.9.3). The vulnerability affects the theme’s ability to perform privileged actions via cross-site requests, with a CVSS v3.1 base score of 8.8 (NVD) indicating high impact on confidentiality, integrity, and availabil...