Stylemixthemes Security Vulnerabilities (CVEs)
Track 27 security vulnerabilities affecting Stylemixthemes products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows unauthenticated attackers to mark any order's payment status as 'completed' without actual payment in WordPress sites using ...
Jan 16, 2026This vulnerability allows authenticated WordPress users with Subscriber-level access or higher to install and activate arbitrary plugins on sites runn...
Apr 8, 2025The uListing WordPress plugin has a privilege escalation vulnerability that allows authenticated users with Subscriber-level access or higher to eleva...
Mar 15, 2025The uListing WordPress plugin has a vulnerability that allows authenticated attackers with subscriber-level access or higher to modify post metadata a...
Mar 15, 2025This vulnerability allows authenticated WordPress users with Subscriber-level access or higher to execute arbitrary shortcodes through the Motors plug...
Jan 16, 2025A Cross-Site Request Forgery (CSRF) vulnerability in the MasterStudy LMS WordPress plugin allows attackers to trick authenticated administrators into ...
Jan 2, 2025This CVE describes a missing authorization vulnerability in the MasterStudy LMS WordPress plugin that allows attackers to bypass access controls and p...
Nov 1, 2024This SQL injection vulnerability in the Cost Calculator Builder WordPress plugin allows authenticated users with Admin role or higher to execute arbit...
Sep 30, 2024This vulnerability in the MasterStudy LMS WordPress plugin allows students to create instructor accounts, bypassing intended access controls. Attacker...
Jul 22, 2024This SQL injection vulnerability in StylemixThemes WordPress plugins allows attackers to execute arbitrary SQL commands through unsanitized user input...
Jul 9, 2024The Cost Calculator Builder WordPress plugin has a stored XSS vulnerability that allows authenticated administrators to inject malicious scripts into ...
Jul 2, 2024This vulnerability allows attackers to perform path traversal attacks in the Consulting Elementor Widgets WordPress plugin, leading to local file incl...
Jun 24, 2024This vulnerability allows unauthenticated attackers to perform path traversal attacks, leading to local file inclusion in the Consulting Elementor Wid...
Jun 24, 2024This vulnerability allows unauthenticated attackers to perform path traversal attacks in the StylemixThemes MegaMenu WordPress plugin, leading to loca...
Jun 10, 2024The MasterStudy LMS WordPress plugin has a Local File Inclusion vulnerability that allows unauthenticated attackers to include and execute arbitrary P...
Apr 9, 2024This vulnerability allows unauthenticated attackers to create administrator accounts on WordPress sites running the MasterStudy LMS plugin. It affects...
Mar 29, 2024This vulnerability allows unauthenticated attackers to inject malicious scripts into web pages through the StylemixThemes Motors WordPress plugin. Whe...
Oct 27, 2023The MasterStudy LMS WordPress plugin before version 3.0.18 has an improper access control vulnerability that allows unauthenticated attackers to regis...
Sep 11, 2023The uListing WordPress plugin up to version 1.6.6 has an authorization bypass vulnerability that allows unauthenticated attackers to modify any WordPr...
Jun 7, 2023The uListing WordPress plugin up to version 1.6.6 has an authorization bypass vulnerability where unauthenticated users can access administrative acti...
Jun 7, 2023The uListing WordPress plugin up to version 1.6.6 has an authorization bypass vulnerability in its REST API endpoint. Unauthenticated attackers can ex...
Jun 7, 2023The uListing WordPress plugin contains an SQL injection vulnerability in versions up to 1.6.6 that allows unauthenticated attackers to execute arbitra...
Jun 7, 2023This vulnerability in the Unauthenticated Account Creation plugin for WordPress allows unauthenticated attackers to create user accounts, including ad...
Jun 7, 2023The uListing WordPress plugin up to version 1.6.6 has an authentication bypass vulnerability that allows unauthenticated attackers to modify any user ...
Jun 7, 2023The MasterStudy LMS WordPress plugin before version 2.7.6 contains an authentication bypass vulnerability that allows unauthenticated attackers to reg...
Mar 7, 2022This vulnerability allows authenticated WordPress users to access or modify data belonging to other users through insecure direct object references in...
Sep 27, 2021This vulnerability allows unauthenticated attackers to escalate privileges in WordPress sites using the uListing plugin (versions 2.0.5 and earlier). ...
Sep 27, 2021Why Monitor Stylemixthemes Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 27+ known vulnerabilities affecting Stylemixthemes products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Stylemixthemes packages in under 60 seconds. No agents required - completely agentless scanning that works across Stylemixthemes deployments.
Free vulnerability database: Access detailed information about every Stylemixthemes CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Stylemixthemes CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
