by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors PrintXtore – Printing Services & Design Online WordPress WooCommerce Theme (slug: bw-printxtore) versions below 1.7.7 are affected by a High-severity vulnerability (CVE-2025-28946, CVSS 8.1). Because it is unauthenticated, an attacker does not need...
by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors Domnoo – Pizza & Restaurant WordPress Theme (slug: domnoo) has a High-severity vulnerability (CVSS 8.1) identified as CVE-2025-52812. Because the issue is unauthenticated, an attacker can target exposed WordPress sites running Domnoo versions...
by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors GiftXtore – Luxury Jewelry & Gift Store Elementor WooCommerce WordPress Theme (slug: bw-giftxtore) has a Critical vulnerability (CVSS 9.8) tracked as CVE-2025-28888. The issue is unauthenticated, meaning an attacker does not need a login to...
by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors Yozi – Multipurpose Electronics WooCommerce WordPress Theme (slug: yozi) versions up to and including 2.0.63 are affected by CVE-2025-32289, a Critical vulnerability (CVSS 9.8; vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Because this...
by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors Capie – Minimal Creative WooCommerce WordPress Theme (slug: capie) is affected by a Critical vulnerability (CVSS 9.8) tracked as CVE-2025-31060. The issue is an Unauthenticated Local File Inclusion (LFI) affecting versions up to and including 1.0.40....
by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors CVE-2024-52478 is a Medium-severity (CVSS 6.4) Stored Cross-Site Scripting (XSS) issue affecting the Jobify – Job Board WordPress Theme (slug: jobify) in versions prior to 4.3.0. The attacker must be authenticated with at least Contributor...
Recent Comments