Vulnerabilities > Detheme

DATE	CVE	VULNERABILITY TITLE	RISK
2025-02-13	CVE-2025-0661	Unspecified vulnerability in Detheme Dethemekit for Elementor The DethemeKit For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.36 via the duplicate_post() function due to insufficient restrictions on which posts can be duplicated. network low complexity detheme	4.3
2025-02-13	CVE-2024-13644	Cross-site Scripting vulnerability in Detheme Dethemekit for Elementor The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's De Gallery widget in all versions up to, and including, 2.1.8 due to insufficient input sanitization and output escaping on user supplied attributes. network low complexity detheme CWE-79	5.4
2021-05-05	CVE-2021-24270	Unspecified vulnerability in Detheme Dethemekit for Elementor The “DeTheme Kit for Elementor” WordPress Plugin before 1.5.5.5 has a widget that is vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method. network low complexity detheme	5.4

Vulnerabilities > Detheme {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Detheme"}]}