Plugin Planet Theme Switcha
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Plugin Planet Theme Switcha.
By the Year
In 2026 there have been 0 vulnerabilities in Plugin Planet Theme Switcha. Last year, in 2025 Theme Switcha had 1 security vulnerability published. Right now, Theme Switcha is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 5.40 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 5.40 |
It may take a day or so for new Theme Switcha vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Plugin Planet Theme Switcha Security Vulnerabilities
Stored XSS in Theme Switcha <=3.4 (Jeff Starr)
CVE-2025-46239
5.4 - Medium
- April 22, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jeff Starr Theme Switcha allows Stored XSS. This issue affects Theme Switcha: from n/a through 3.4.
XSS
WP Theme Switcha 3.3 Stored XSS via theme_switcha_list Shortcode
CVE-2023-5614
5.4 - Medium
- October 20, 2023
The Theme Switcha plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'theme_switcha_list' shortcode in all versions up to, and including, 3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Plugin Planet Theme Switcha or by Plugin Planet? Click the Watch button to subscribe.
