Xylusthemes CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Xylusthemes Subscriptions

Search

Switch to Advanced Search (Beta)

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-48256	1 Xylusthemes	1 Import Social Events	2025-05-29	6.5 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Xylus Themes Import Social Events allows Stored XSS. This issue affects Import Social Events: from n/a through 1.8.5.
CVE-2022-40209	1 Xylusthemes	1 Wp Smart Import	2024-11-21	6.1 Medium
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Xylus Themes WP Smart Import plugin <= 1.0.2 on WordPress.
CVE-2020-24147	1 Xylusthemes	1 Wp Smart Import	2024-11-21	9.1 Critical
Server-side request forgery (SSR) vulnerability in the WP Smart Import (wp-smart-import) plugin 1.0.0 for WordPress via the file field.

Page 1 of 1.