Filtered by vendor 8theme
Subscriptions
Filtered by product Xstore
Subscriptions
Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-33559 | 1 8theme | 1 Xstore | 2025-07-13 | 9.3 Critical |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore allows SQL Injection.This issue affects XStore: from n/a through 9.3.5. | ||||
| CVE-2024-33560 | 2 8theme, Wordpress | 2 Xstore, Wordpress | 2025-07-12 | 9 Critical |
| Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 8theme XStore allows PHP Local File Inclusion.This issue affects XStore: from n/a through 9.3.8. | ||||
| CVE-2024-33564 | 1 8theme | 1 Xstore | 2024-11-21 | 8.8 High |
| Missing Authorization vulnerability in 8theme XStore.This issue affects XStore: from n/a through 9.3.8. | ||||
| CVE-2024-33563 | 1 8theme | 1 Xstore | 2024-11-21 | 7.6 High |
| Missing Authorization vulnerability in 8theme XStore.This issue affects XStore: from n/a through 9.3.8. | ||||
| CVE-2024-33562 | 1 8theme | 1 Xstore | 2024-11-21 | 7.1 High |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 8theme XStore allows Reflected XSS.This issue affects XStore: from n/a through 9.3.5. | ||||
| CVE-2024-33561 | 1 8theme | 1 Xstore | 2024-11-21 | 7.5 High |
| Missing Authorization vulnerability in 8theme XStore.This issue affects XStore: from n/a through 9.3.8. | ||||
Page 1 of 1.