bdthemes

Top products

The 15 most recently published vulnerabilities affecting bdthemes.

• CVE-2026-52705WordPress SigmaForms Pro – AI Generated Forms plugin <= 1.4.5 - Arbitrary File Upload vulnerability9.0Jun 17, 2026
• CVE-2026-40721WordPress Element Pack Pro plugin <= 9.0.6 - Local File Inclusion vulnerability7.5Jun 17, 2026
• CVE-2026-40745WordPress Element Pack Elementor Addons plugin <= 8.4.2 - SQL Injection vulnerability7.6Apr 15, 2026
• CVE-2026-4655Element Pack Addons for Elementor <= 8.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via SVG Image Widget6.4Apr 8, 2026
• CVE-2026-4341Prime Slider <= 4.1.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'follow_us_text' Parameter6.4Apr 8, 2026
• CVE-2026-24362WordPress Ultimate Post Kit plugin <= 4.0.21 - Broken Access Control vulnerability6.4Mar 25, 2026
• CVE-2026-1793Element Pack Addons for Elementor <= 8.3.17 - Authenticated (Contributor+) Arbitrary File Read6.5Feb 15, 2026
• CVE-2025-31413WordPress Element Pack Elementor Addons plugin <= 8.3.13 - Cross Site Request Forgery (CSRF) vulnerability4.3Jan 22, 2026
• CVE-2026-0808Spin Wheel <= 2.1.0 - Unauthenticated Client-Side Prize Manipulation via 'prize_index' Parameter5.3Jan 17, 2026
• CVE-2025-69336WordPress Ultimate Store Kit Elementor Addons plugin <= 2.9.4 - Broken Access Control vulnerability4.3Jan 6, 2026
• CVE-2025-68500WordPress Prime Slider – Addons For Elementor plugin <= 4.0.10 - Server Side Request Forgery (SSRF) vulnerability4.9Dec 24, 2025
• CVE-2025-14277Prime Slider – Addons for Elementor <= 4.0.9 - Authenticated (Subscriber+) Server-Side Request Forgery4.3Dec 18, 2025
• CVE-2025-13196Element Pack Addons for Elementor <= 8.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Open Street Map widget5.4Nov 18, 2025
• CVE-2025-12134ZoloBlocks <= 2.3.11 - Missing Authorization to Unauthenticated Popup Enable/Disable5.3Oct 24, 2025
• CVE-2025-49903WordPress ZoloBlocks plugin <= 2.3.11 - Broken Access Control vulnerability5.3Oct 22, 2025