Vulnerabilidades en NooTheme

31 resultados
CVE-2024-37928HIGHWordPress Jobmonster theme <= 4.7.0 - Unauthenticated Arbitrary File Deletion vulnerabilityEPSS 0.6%CVE-2026-27049CRITICALWordPress Jobica Core plugin <= 1.4.2 - Account Takeover vulnerabilityEPSS 0.5%CVE-2024-37927CRITICALWordPress Jobmonster theme <= 4.7.5 - Unauthenticated Privilege Escalation vulnerabilityEPSS 0.5%CVE-2025-24779HIGHWordPress Yogi theme < 2.9.3 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2025-3918CRITICALJob Listings 0.1 - 0.1.1 - Unauthenticated Privilege Escalation via register_action FunctionEPSS 0.5%CVE-2025-6190HIGHRealty Portal – Agent <= 0.3.9 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via rp_user_profile() FunctionEPSS 0.4%CVE-2025-54738CRITICALWordPress Jobmonster Theme <= 4.7.9 - Broken Authentication VulnerabilityEPSS 0.4%CVE-2025-67524HIGHWordPress Jobmonster Elementor Addon plugin <= 1.1.4 - Local File Inclusion vulnerabilityEPSS 0.4%CVE-2025-67522HIGHWordPress Jobmonster theme <= 4.8.2 - Local File Inclusion vulnerabilityEPSS 0.4%CVE-2025-53586HIGHWordPress WeMusic Theme <= 1.9.1 - PHP Object Injection VulnerabilityEPSS 0.4%CVE-2026-24978HIGHWordPress Jobica Core plugin <= 1.4.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-24976HIGHWordPress Organici Library plugin <= 2.1.2 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-24981HIGHWordPress Visionary Core plugin <= 1.4.9 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-24974HIGHWordPress CitiLights theme <= 3.7.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2025-11985HIGHRealty Portal <= 0.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options UpdateEPSS 0.3%CVE-2022-45821MEDIUMWordPress NOO Timetable Plugin <= 2.1.3 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2025-54719HIGHWordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 - Deserialization of untrusted data VulnerabilityEPSS 0.3%CVE-2026-25340CRITICALWordPress Jobmonster theme < 4.8.4 - SQL Injection vulnerabilityEPSS 0.3%CVE-2025-53201HIGHWordPress Jobmonster theme <= 4.7.8 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2026-25367MEDIUMWordPress CitiLights theme < 3.7.2 - Broken Access Control vulnerabilityEPSS 0.3%