Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ithemes vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-7433
The iThemes Security plugin prior to 6.9.1 for WordPress does not properly perform data escaping for the logs page.
Ithemes Security
4.3
CVSSv2
CVE-2015-9365
Authorize.net Add-on for iThemes Exchange prior to 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
Ithemes Authorize.net
4.3
CVSSv2
CVE-2015-9374
Stripe Add-on for iThemes Exchange prior to 1.2.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
Ithemes Stripe
4.3
CVSSv2
CVE-2015-9376
iThemes Mobile prior to 1.2.8 for WordPress has XSS via add_query_arg() and remove_query_arg().
Ithemes Mobile
7.5
CVSSv2
CVE-2020-14092
The CodePeople Payment Form for PayPal Pro plugin prior to 1.1.65 for WordPress allows SQL Injection.
Ithemes Paypal Pro
5
CVSSv2
CVE-2013-2744
importbuddy.php in the BackupBuddy plugin 2.2.25 for WordPress allows remote malicious users to obtain configuration information via a step 0 phpinfo action, which calls the phpinfo function.
Ithemes Backupbuddy 2.2.25
4.3
CVSSv2
CVE-2015-9364
2Checkout Add-on for iThemes Exchange prior to 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
2checkout Ithemes 2checkout
4.3
CVSSv2
CVE-2015-9371
Manual Purchases Add-on for iThemes Exchange prior to 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
Ithemes Manual Purchases
4.3
CVSSv2
CVE-2015-9377
iThemes Builder Theme Depot prior to 5.0.30 for WordPress has XSS via add_query_arg() and remove_query_arg().
Ithemes Builder Theme Depot
4.3
CVSSv2
CVE-2015-9366
Custom URL Tracking Add-on for iThemes Exchange prior to 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
Ithemes Custom Url Tracking
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »