4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilidades em ExtendThemes\",\"url\":\"https://vexday.io/pt/vendor/ExtendThemes\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":28},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Início\",\"item\":\"https://vexday.io/pt\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Tecnologias\",\"item\":\"https://vexday.io/pt/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"ExtendThemes\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/pt","children":"Início"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/pt/vendors","children":"Tecnologias"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"ExtendThemes"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilidades em"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"ExtendThemes"}]]}],["$","span",null,{"className":"t","children":["28"," ","resultados"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2025-2294",{"className":"item","href":"/pt/cve/CVE-2025-2294","children":[["$","span",null,{"className":"cid","children":"CVE-2025-2294"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"Kubio AI Page Builder <= 2.5.1 - Unauthenticated Local File Inclusion"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"77.3%"}]]}],false]}]]}],["$","$La","CVE-2019-25142",{"className":"item","href":"/pt/cve/CVE-2019-25142","children":[["$","span",null,{"className":"cid","children":"CVE-2019-25142"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Mesmerize <= 1.6.89 & Materialis <= 1.0.172 - Authenticated Arbitrary Options Update"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"1.3%"}]]}],false]}]]}],["$","$La","CVE-2023-2188",{"className":"item","href":"/pt/cve/CVE-2023-2188","children":[["$","span",null,{"className":"cid","children":"CVE-2023-2188"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.227 - Authenticated (Administrator+) SQL Injection via post_id"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.8%"}]]}],false]}]]}],["$","$La","CVE-2026-5427",{"className":"item","href":"/pt/cve/CVE-2026-5427","children":[["$","span",null,{"className":"cid","children":"CVE-2026-5427"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Kubio AI Page Builder <= 2.7.2 - Missing Authorization to Authenticated (Contributor+) Limited File Upload via Kubio Block Attributes"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-3340",{"className":"item","href":"/pt/cve/CVE-2024-3340","children":[["$","span",null,{"className":"cid","children":"CVE-2024-3340"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.272 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'colibri-gallery-slideshow' Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-3338",{"className":"item","href":"/pt/cve/CVE-2024-3338","children":[["$","span",null,{"className":"cid","children":"CVE-2024-3338"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.262 - Authenticated (Author+) Stored Cross-Site Scripting"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-3337",{"className":"item","href":"/pt/cve/CVE-2024-3337","children":[["$","span",null,{"className":"cid","children":"CVE-2024-3337"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.272 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'colibri_breadcrumb_element' Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-5020",{"className":"item","href":"/pt/cve/CVE-2024-5020","children":[["$","span",null,{"className":"cid","children":"CVE-2024-5020"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-1870",{"className":"item","href":"/pt/cve/CVE-2024-1870","children":[["$","span",null,{"className":"cid","children":"CVE-2024-1870"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.260 - Missing Authorization"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2023-6988",{"className":"item","href":"/pt/cve/CVE-2023-6988","children":[["$","span",null,{"className":"cid","children":"CVE-2023-6988"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.239 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2023-50833",{"className":"item","href":"/pt/cve/CVE-2023-50833","children":[["$","span",null,{"className":"cid","children":"CVE-2023-50833"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Colibri Page Builder Plugin <= 1.0.239 is vulnerable to Cross Site Scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2023-3204",{"className":"item","href":"/pt/cve/CVE-2023-3204","children":[["$","span",null,{"className":"cid","children":"CVE-2023-3204"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Materialis <= 1.1.24 - Missing Authorization to Limited Arbitrary Options Update"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-28004",{"className":"item","href":"/pt/cve/CVE-2024-28004","children":[["$","span",null,{"className":"cid","children":"CVE-2024-28004"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Colibri Page Builder plugin <= 1.0.248 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-2839",{"className":"item","href":"/pt/cve/CVE-2024-2839","children":[["$","span",null,{"className":"cid","children":"CVE-2024-2839"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.263 - Authenticated (Contributor+) Stored Cross-Site Scripting"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-5038",{"className":"item","href":"/pt/cve/CVE-2024-5038","children":[["$","span",null,{"className":"cid","children":"CVE-2024-5038"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.276 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-13516",{"className":"item","href":"/pt/cve/CVE-2024-13516","children":[["$","span",null,{"className":"cid","children":"CVE-2024-13516"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Kubio AI Page Builder <= 2.3.5 - Reflected Cross-Site Scripting"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-11747",{"className":"item","href":"/pt/cve/CVE-2025-11747","children":[["$","span",null,{"className":"cid","children":"CVE-2025-11747"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.345 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-4451",{"className":"item","href":"/pt/cve/CVE-2024-4451","children":[["$","span",null,{"className":"cid","children":"CVE-2024-4451"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Colibri Page Builder <= 1.0.276 - Authenticated (Contributor+) Stored Cross-Site Scripting via colibri_video_player Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-39661",{"className":"item","href":"/pt/cve/CVE-2024-39661","children":[["$","span",null,{"className":"cid","children":"CVE-2024-39661"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Kubio AI Page Builder plugin <= 2.2.4 - Authenticated Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-8487",{"className":"item","href":"/pt/cve/CVE-2025-8487","children":[["$","span",null,{"className":"cid","children":"CVE-2025-8487"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Kubio AI Page Builder <= 2.6.3 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Installation"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","span",null,{"className":"off","children":"← anterior"}],["$","span",null,{"className":"pgnum","children":["página"," ","1"," / ","2"]}],["$","$La",null,{"href":"?page=2","children":"próxima →"}]]}]]}]