Exposure of OceanWP
WordPress themes12
exposure score
35,678
sites use
0
exploited
0
critical
CVEs
6 resultsCVE-2023-23700HIGHWordPress OceanWP theme <= 3.4.1 - Authenticated Local File Inclusion vulnerabilityEPSS 0.7%CVE-2024-2476MEDIUMOceanWP <= 3.5.4 - Missing Authorization to Sensitive Information Exposure via Limited Local File InclusionEPSS 0.4%CVE-2024-5647MEDIUMMultiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript LibraryEPSS 0.3%CVE-2025-8944MEDIUMOceanWP < 4.1.2 - Subscriber+ Limited Option UpdateEPSS 0.2%CVE-2025-5524MEDIUMOceanWP <= 4.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Select HTML TagEPSS 0.2%CVE-2025-8891MEDIUMOceanWP <= 4.0.9 - 4.1.1 - Cross-Site Request Forgery to Ocean Extra Plugin InstallationEPSS 0.2%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →