boldthemes

Top products

The 15 most recently published vulnerabilities affecting boldthemes.

• CVE-2026-27429WordPress Nifty theme <= 1.4.1 - PHP Object Injection vulnerability9.8Jun 16, 2026
• CVE-2026-3694Bold Page Builder <= 5.6.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via bt_bb_button Shortcode6.4May 14, 2026
• CVE-2026-27369WordPress Celeste theme <= 1.3.6 - PHP Object Injection vulnerability8.1Mar 5, 2026
• CVE-2025-68541WordPress Ippsum theme <= 1.2.0 - PHP Object Injection vulnerability9.8Feb 20, 2026
• CVE-2025-67997WordPress Travelicious theme < 1.6.7 - PHP Object Injection vulnerability9.8Feb 20, 2026
• CVE-2025-67996WordPress Nestin theme < 1.2.6 - PHP Object Injection vulnerability9.8Feb 20, 2026
• CVE-2026-25451WordPress Bold Page Builder plugin <= 5.6.9 - Cross Site Scripting (XSS) vulnerability6.5Feb 19, 2026
• CVE-2025-12159Bold Page Builder <= 5.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode6.4Feb 7, 2026
• CVE-2025-13463Bold Page Builder <= 5.5.3 - Authenticated (Author+) Stored DOM-based Cross-Site Scripting in Post Grid6.4Feb 7, 2026
• CVE-2025-12803Bold Builder <= 5.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via bt_bb_tabs Shortcode6.4Feb 7, 2026
• CVE-2025-15267Bold Page Builder <= 5.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via bt_bb_accordion_item Shortcode6.4Feb 7, 2026
• CVE-2025-68513WordPress Bold Timeline Lite plugin <= 1.2.7 - Cross Site Scripting (XSS) vulnerability6.5Dec 24, 2025
• CVE-2025-64233WordPress Codiqa theme < 1.2.8 - PHP Object Injection vulnerability9.8Dec 18, 2025
• CVE-2025-54723WordPress DentiCare Theme < 1.4.3 - PHP Object Injection Vulnerability9.8Dec 18, 2025
• CVE-2025-14032Bold Timeline Lite <= 1.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'title' Parameter in 'bold_timeline_group' Shortcode6.4Dec 12, 2025