Known Vulnerabilities for Highlight by Extendthemes
Listed below are 6 of the newest known vulnerabilities associated with "Highlight" by "Extendthemes".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-67586 json | Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly C... | Not Provided | 2025-12-09 | 2026-04-23 |
| CVE-2025-58260 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ronald Huereca Highligh... | Not Provided | 2025-09-22 | 2026-04-23 |
| CVE-2025-31442 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e1tekoap42 Search engin... | Not Provided | 2025-04-03 | 2026-04-23 |
| CVE-2025-1010 json | An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This... | Not Provided | 2025-02-04 | 2026-04-13 |
| CVE-2024-56297 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuantumCloud Highlight ... | Not Provided | 2025-01-07 | 2026-04-23 |
| CVE-2024-37458 json | Cross-Site Request Forgery (CSRF) vulnerability in extendthemes Highlight highlight allows Cross Site Request Forgery.This is... | Not Provided | 2025-01-02 | 2026-04-23 |