Vulnerabilities > Themesawesome

DATE CVE VULNERABILITY TITLE RISK
2025-02-27 CVE-2024-13647 Cross-Site Request Forgery (CSRF) vulnerability in Themesawesome Sakolawp
The School Management System – SakolaWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.8.
network
low complexity
themesawesome CWE-352
4.3
2022-09-23 CVE-2022-37328 Cross-site Scripting vulnerability in Themesawesome Timeline Awesome
Authenticated (author+) Stored Cross-Site Scripting (XSS) vulnerability in Themes Awesome History Timeline plugin <= 1.0.5 at WordPress.
network
low complexity
themesawesome CWE-79
5.4