Known Vulnerabilities for products from Everestthemes

Listed below are 8 of the newest known vulnerabilities associated with the vendor "Everestthemes".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2025-62992 json	Cross-Site Request Forgery (CSRF) vulnerability in everestthemes Everest Backup everest-backup allows Path Traversal.This iss...	Not Provided	2025-12-31	2026-04-23
CVE-2025-62946 json		Not Provided	2025-10-27	2026-04-23
CVE-2025-49238 json		Not Provided	2025-06-06	2026-04-23
CVE-2025-39360 json		Not Provided	2025-04-24	2026-04-23
CVE-2023-52185 json		7.5 - HIGH	2023-12-31	2024-01-05
CVE-2023-41237 json	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Everest Themes Arya Multipurpose Pro theme <= 1.0.8 versions.	6.1 - MEDIUM	2023-09-27	2023-09-28
CVE-2023-41235 json	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Everest Themes Everest News Pro theme <= 1.1.7 versions.	6.1 - MEDIUM	2023-09-27	2023-09-28
CVE-2023-27421 json	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Everest themes Everest News theme <= 1.1.0 versions.	6.1 - MEDIUM	2023-08-08	2023-08-10
CVE-2023-27420 json	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Everest Themes Arya Multipurpose theme <= 1.0.5 versions.	6.1 - MEDIUM	2023-06-16	2023-06-23
CVE-2023-27419 json	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Everest themes Viable Blog theme <= 1.1.4 versions.	6.1 - MEDIUM	2023-05-10	2023-05-16
CVE-2023-27412 json	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Everest themes Mocho Blog theme <= 1.0.4 versions.	6.1 - MEDIUM	2023-08-08	2023-08-10