Vulnerabilities in Villatheme

42 results

CVE-2026-39593MEDIUMWordPress HAPPY plugin <= 1.0.10 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-30993MEDIUMWordPress Thank You Page Customizer for WooCommerce – Increase Your Sales <= 1.1.7 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-49283HIGHWordPress CURCY plugin <= 2.2.3 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-47563MEDIUMWordPress CURCY plugin <= 2.3.7 - Arbitrary Shortcode Execution vulnerabilityEPSS 0.3%CVE-2023-48778MEDIUMWordPress Product Size Chart For WooCommerce Plugin <= 1.1.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-67977HIGHWordPress HAPPY plugin <= 1.0.8 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2022-46812MEDIUMWordPress Thank You Page Customizer for WooCommerce – Increase Your Sales Plugin <= 1.0.13 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-49288MEDIUMWordPress Email Template Customizer for WooCommerce plugin <= 1.2.9.1 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2026-54809CRITICALWordPress GIFT4U plugin <= 1.0.10 - SQL Injection vulnerabilityEPSS 0.2%CVE-2022-46810MEDIUMWordPress Thank You Page Customizer for WooCommerce – Increase Your Sales Plugin <= 1.0.13 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-68550HIGHWordPress WPBulky plugin <= 1.1.13 - SQL Injection vulnerabilityEPSS 0.2%CVE-2025-47570HIGHWordPress WooCommerce Photo Reviews plugin <= 1.3.13 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-14581MEDIUMHAPPY – Helpdesk Support Ticket System <= 1.0.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Ticket ReplyEPSS 0.2%CVE-2022-46806MEDIUMWordPress Cart All In One For WooCommerce Plugin <= 1.1.10 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2026-40737MEDIUMWordPress COMPE plugin <= 1.1.4 - Insecure Direct Object References (IDOR) vulnerabilityEPSS 0.2%CVE-2025-53571MEDIUMWordPress HAPPY plugin <= 1.0.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-22803MEDIUMWordPress Advanced Product Information for WooCommerce plugin <= 1.1.4 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-66528MEDIUMWordPress Thank You Page Customizer for WooCommerce plugin <= 1.1.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-28132MEDIUMWordPress WooCommerce Photo Reviews plugin <= 1.4.4 - Content Injection vulnerabilityEPSS 0.2%CVE-2025-68556MEDIUMWordPress HAPPY plugin <= 1.0.9 - Broken Access Control vulnerabilityEPSS 0.2%

← previouspage 2 / 3next →