Vulnerabilities in Themesgrove
6 resultsCVE-2023-38391MEDIUMWordPress Onepage Builder – Easiest Landing Page Builder For WordPress Plugin <= 2.4.1 is vulnerable to SQL InjectionEPSS 0.5%CVE-2024-33908MEDIUMWordPress WidgetKit plugin <= 2.5.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-37428MEDIUMWordPress All-in-One Addons for Elementor – WidgetKit plugin <= 2.5.0 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-34548MEDIUMWordPress All-in-One Addons for Elementor – WidgetKit plugin <= 2.4.8 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-3851MEDIUMDownload Manager and Payment Form WordPress Plugin – WP SmartPay 1.1.0 - 2.7.13 - Authenticated (Subscriber+) Information ExposureEPSS 0.2%CVE-2025-46494HIGHWordPress WidgetKit Pro plugin <= 1.13.1 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%