📦 Enfold

Name: Enfold
Author: Kriesi

by Kriesi

🔍 What is Enfold?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-37199

HIGH CVSS 7.1 Jul 22, 2024

This CVE describes a reflected cross-site scripting (XSS) vulnerability in the Enfold WordPress theme. Attackers can inject malicious scripts via user input that gets reflected in web pages without pr...

CVE-2023-38400

HIGH CVSS 7.1 Nov 30, 2023

This reflected cross-site scripting (XSS) vulnerability in the Enfold WordPress theme allows attackers to inject malicious scripts into web pages by manipulating input parameters. When exploited, it c...

CVE-2024-13693

MEDIUM CVSS 5.3 Feb 25, 2025

The Enfold WordPress theme has an authorization bypass vulnerability that allows unauthenticated attackers to export all theme settings. This can expose sensitive API keys and tokens stored in the the...

CVE-2024-5061

MEDIUM CVSS 6.4 Aug 30, 2024

This vulnerability allows authenticated WordPress users with Contributor-level access or higher to inject malicious scripts into web pages using the Enfold theme. The scripts execute whenever users vi...