Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
1919011.7%HIGH

Related CVEs

19
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-23998Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in raratheme UltraLight the-ultralight allows Reflected XSS.This issue affects UltraLight: from n/a through <= 1.2.MEDIUM6.116.3%Jan 21, 2025
CVE-2024-37937Cross-Site Request Forgery (CSRF) vulnerability in raratheme Rara Business rara-business allows Cross Site Request Forgery.This issue affects Rara Business: from n/a through <= 1.2.5.HIGH8.812.0%Jan 2, 2025
CVE-2024-37508Cross-Site Request Forgery (CSRF) vulnerability in raratheme Construction Landing Page construction-landing-page allows Cross Site Request Forgery.This issue affects Construction Landing Page: from n/a through <= 1.3.5.HIGH8.88.6%Jan 2, 2025
CVE-2024-37503Cross-Site Request Forgery (CSRF) vulnerability in raratheme Lawyer Landing Page lawyer-landing-page allows Cross Site Request Forgery.This issue affects Lawyer Landing Page: from n/a through <= 1.2.4.HIGH8.812.0%Jan 2, 2025
CVE-2024-37451Cross-Site Request Forgery (CSRF) vulnerability in raratheme Travel Agency travel-agency allows Cross Site Request Forgery.This issue affects Travel Agency: from n/a through <= 1.4.9.HIGH8.810.4%Jan 2, 2025
CVE-2024-37450Cross-Site Request Forgery (CSRF) vulnerability in raratheme Benevolent benevolent allows Cross Site Request Forgery.This issue affects Benevolent: from n/a through <= 1.3.4.HIGH8.810.4%Jan 2, 2025
CVE-2024-37435Cross-Site Request Forgery (CSRF) vulnerability in raratheme Perfect Portfolio perfect-portfolio allows Cross Site Request Forgery.This issue affects Perfect Portfolio: from n/a through <= 1.2.0.HIGH8.810.4%Jan 2, 2025
CVE-2024-37426Cross-Site Request Forgery (CSRF) vulnerability in raratheme Elegant Pink elegant-pink allows Cross Site Request Forgery.This issue affects Elegant Pink: from n/a through <= 1.3.0.MEDIUM4.35.9%Jan 2, 2025
CVE-2024-37421Cross-Site Request Forgery (CSRF) vulnerability in raratheme JobScout jobscout allows Cross Site Request Forgery.This issue affects JobScout: from n/a through <= 1.1.4.MEDIUM4.37.0%Jan 2, 2025
CVE-2024-37413Cross-Site Request Forgery (CSRF) vulnerability in raratheme Preschool and Kindergarten preschool-and-kindergarten allows Cross Site Request Forgery.This issue affects Preschool and Kindergarten: from n/a through <= 1.2.1.MEDIUM4.37.4%Jan 2, 2025
CVE-2024-37104Cross-Site Request Forgery (CSRF) vulnerability in raratheme Chic Lite chic-lite allows Cross Site Request Forgery.This issue affects Chic Lite: from n/a through <= 1.1.3.MEDIUM4.37.4%Jan 2, 2025
CVE-2024-37103Cross-Site Request Forgery (CSRF) vulnerability in raratheme Education Zone education-zone allows Cross Site Request Forgery.This issue affects Education Zone: from n/a through <= 1.3.4.MEDIUM4.37.4%Jan 2, 2025
CVE-2024-37505Missing Authorization vulnerability in Rara Themes Business One Page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Business One Page: from n/a through 1.2.9.MEDIUM5.421.6%Nov 1, 2024
CVE-2024-37230Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Book Landing Page.This issue affects Book Landing Page: from n/a through 1.2.3.HIGH8.810.9%Jun 21, 2024
CVE-2024-34379Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Restaurant and Cafe.This issue affects Restaurant and Cafe: from n/a through 1.2.1.MEDIUM4.310.9%May 6, 2024
CVE-2024-31384Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Spa and Salon.This issue affects Spa and Salon: from n/a through 1.2.7.MEDIUM4.39.9%Apr 15, 2024
CVE-2024-31428Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme The Conference.This issue affects The Conference: from n/a through 1.2.0.MEDIUM4.39.9%Apr 15, 2024
CVE-2023-24404Reflected Cross-Site Scripting (XSS) vulnerability in VryaSage Marketing Performance plugin <= 2.0.0 versions.MEDIUM6.132.6%Apr 23, 2023
CVE-2022-29451Cross-Site Request Forgery (CSRF) leading to Arbitrary File Upload vulnerability in Rara One Click Demo Import plugin <= 1.2.9 on WordPress allows attackers to trick logged-in admin users into uploading dangerous files into /wp-content/uploads/ directory.HIGH8.8Apr 29, 2022