deluxethemes
Web & CMS Pluginscommercial
Top products
Latest CVEs
The 11 most recently published vulnerabilities affecting deluxethemes.
- CVE-2025-53444WordPress Userpro plugin < 5.1.11 - Cross Site Request Forgery (CSRF) vulnerability4.3
- CVE-2025-68608WordPress Userpro plugin <= 5.1.9 - Broken Access Control vulnerability7.5
- CVE-2024-12822Media Manager for UserPro <= 3.12.0 - Missing Authorization to Unauthenticated Arbitrary Options Update9.8
- CVE-2024-12821Media Manager for UserPro <= 3.12.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update8.8
- CVE-2025-22322WordPress Private Messages for UserPro plugin <= 4.10.0 - Reflected Cross Site Scripting (XSS) vulnerability7.1
- CVE-2025-22311WordPress Private Messages for UserPro plugin <= 4.10.0 - Local File Inclusion vulnerability7.5
- CVE-2024-56210WordPress UserPro plugin <= 5.1.9 - Reflected Cross Site Scripting (XSS) vulnerability7.1
- CVE-2024-56212WordPress UserPro plugin <= 5.1.9 - SQL Injection vulnerability8.5
- CVE-2024-56211WordPress UserPro plugin <= 5.1.9 - Authenticated Arbitrary User Meta Update vulnerability8.8
- CVE-2024-56214WordPress UserPro plugin <= 5.1.9 - Local File Inclusion vulnerability8.3
- CVE-2024-35700WordPress UserPro plugin <= 5.1.8 - Unauthenticated Account Takeover vulnerability9.8