📦 Betheme

This CVE describes a Missing Authorization vulnerability in the Betheme WordPress theme that allows unauthorized users to perform actions intended only for authorized users. It affects Betheme version...

This CVE describes a Missing Authorization vulnerability in the Betheme WordPress theme that allows contributors to perform actions they shouldn't have permission for. It affects all Betheme installat...

This vulnerability allows unauthenticated attackers to inject malicious scripts into web pages served by the Betheme WordPress theme. When a user visits a specially crafted URL, the script executes in...

The Betheme WordPress plugin has a stored cross-site scripting (XSS) vulnerability that allows authenticated attackers with contributor-level access or higher to inject malicious scripts into website ...

The Betheme WordPress theme has a stored XSS vulnerability in versions up to 27.5.6. Authenticated attackers with contributor-level access or higher can inject malicious scripts via shortcode attribut...