Vulnerabilities (CVE)

Filtered by vendor Dream-theme Subscribe
Filtered by product The7
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-32123 1 Dream-theme 1 The7 2024-06-21 N/A 6.1 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Dream-Theme The7 allows Stored XSS.This issue affects The7: from n/a through 11.7.3.
CVE-2023-29100 1 Dream-theme 1 The7 2024-02-28 N/A 6.1 MEDIUM
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Dream-Theme The7 plugin <= 11.6.0 versions.