Vulnerabilidades em blazethemes
16 resultadosCVE-2024-10578HIGHPubnews <= 1.0.7 - Authenticated (Subscriber+) Arbitrary Plugin InstallationEPSS 1.3%CVE-2024-1587MEDIUMNewsmatic <= 1.3.4 - Unauthenticated Information Exposure via newsmatic_filter_posts_load_tab_contentEPSS 0.6%CVE-2025-62050CRITICALWordPress Blogmatic theme <= 1.0.3 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-62056CRITICALWordPress News Event theme <= 1.0.1 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-68910CRITICALWordPress Blogzee theme <= 1.0.5 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2025-68909CRITICALWordPress Blogistic theme <= 1.0.5 - Arbitrary File Upload vulnerabilityEPSS 0.5%CVE-2024-37468MEDIUMWordPress Newsmatic theme <= 1.3.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-9541MEDIUMNews Kit Elementor Addons <= 1.2.1 - Authenticated (Contributor+) Sensitive Information Exposure via Canvas Menu Elementor TemplateEPSS 0.3%CVE-2025-32196MEDIUMWordPress News Kit Elementor Addons plugin <= 1.4.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-54260MEDIUMWordPress News Kit Elementor Addons plugin <= 1.4.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-13334HIGHBlaze Demo Importer 1.0.0 - 1.0.13 - Missing Authorization to Authenticated (Subscriber+) Database Reset and File DeletionEPSS 0.2%CVE-2025-8446MEDIUMBlaze Demo Importer <= 1.0.12 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin InstallEPSS 0.2%CVE-2025-54037MEDIUMWordPress News Kit Elementor Addons plugin <= 1.3.4 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2024-37198MEDIUMWordPress Digital Newspaper theme <= 1.1.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-37473MEDIUMWordPress Trendy News theme <= 1.0.15 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-25416MEDIUMWordPress News Kit Elementor Addons plugin <= 1.4.2 - Broken Access Control vulnerabilityEPSS 0.2%