Plugin Planet Theme Switcha
By the Year
In 2024 there have been 0 vulnerabilities in Plugin Planet Theme Switcha . Last year Theme Switcha had 1 security vulnerability published. Right now, Theme Switcha is on track to have less security vulnerabilities in 2024 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 1 | 5.40 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Theme Switcha vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Plugin Planet Theme Switcha Security Vulnerabilities
The Theme Switcha plugin for WordPress is vulnerable to Stored Cross-Site Scripting
CVE-2023-5614
5.4 - Medium
- October 20, 2023
The Theme Switcha plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'theme_switcha_list' shortcode in all versions up to, and including, 3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Plugin Planet Theme Switcha or by Plugin Planet? Click the Watch button to subscribe.