Known Vulnerabilities for products from Themewinter
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Themewinter".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-49321 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Arraytics Eventin wp-ev... | Not Provided | 2025-06-27 | 2026-04-01 |
| CVE-2025-47539 json | Incorrect Privilege Assignment vulnerability in Arraytics Eventin wp-event-solution allows Privilege Escalation.This issue af... | Not Provided | 2025-05-23 | 2026-04-01 |
| CVE-2025-47445 json | Relative Path Traversal vulnerability in Arraytics Eventin wp-event-solution allows Path Traversal.This issue affects Eventin... | Not Provided | 2025-05-14 | 2026-04-01 |
| CVE-2025-39584 json | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Arra... | Not Provided | 2025-04-16 | 2026-04-01 |
| CVE-2025-26964 json | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Arra... | Not Provided | 2025-02-25 | 2026-04-01 |
| CVE-2025-3419 json | The Event Manager, Events Calendar, Tickets, Registrations – Eventin plugin for WordPress is vulnerable to arbitrary file r... | Not Provided | 2025-05-08 | 2026-04-08 |
| CVE-2024-56213 json | Path Traversal: '.../...//' vulnerability in Arraytics Eventin wp-event-solution allows Path Traversal.This issue affects Eve... | Not Provided | 2024-12-31 | 2026-04-01 |
| CVE-2024-6033 json | The Event Manager, Events Calendar, Tickets, Registrations – Eventin plugin for WordPress is vulnerable to unauthorized dat... | Not Provided | 2024-07-17 | 2026-04-08 |
| CVE-2024-5431 json | The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vuln... | Not Provided | 2024-06-25 | 2026-04-08 |
| CVE-2024-5427 json | The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vuln... | Not Provided | 2024-05-31 | 2026-04-08 |
| CVE-2024-1855 json | The WPCafe – Restaurant Menu, Online Ordering for WooCommerce, Pickup / Delivery and Table Reservation plugin for WordPress... | Not Provided | 2024-05-23 | 2026-04-08 |
| CVE-2024-1122 json | The Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin plugin for WordPress is vulnerable to unauthor... | Not Provided | 2024-02-09 | 2026-04-08 |