ThemeREX

185 tracked vulnerabilities.

CVE-2025-69113 HIGH
WordPress Nexio theme <= 1.10.0 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-69112 HIGH
WordPress Planty theme <= 1.14.0 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-69110 HIGH
WordPress AirSupply theme <= 2.0.0 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-69109 HIGH
WordPress Raider Spirit theme <= 1.1.2 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-69108 CRITICAL
WordPress Hot Coffee theme <= 1.7 - PHP Object Injection vulnerability
Jun 17, 2026
CVSS 9.8
EPSS 0.01
CVE-2025-69107 HIGH
WordPress Rosaleen theme <= 2.8 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-69105 HIGH
WordPress Modernee theme <= 1.6.0 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-60205 CRITICAL
WordPress ThemeREX Addons plugin <= 2.36.1.1 - PHP Object Injection vulnerability
Jun 17, 2026
CVSS 9.8
EPSS 0.01
CVE-2025-58954 HIGH
WordPress HomeRoofer theme <= 2.11.0 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-58953 HIGH
WordPress Joly theme <= 1.22.0 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-58952 HIGH
WordPress Neuronet theme < 1.14.0 - Local File Inclusion vulnerability
Jun 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-54001 CRITICAL
ThemeREX Classter <=2.5 - Deserialization
Mar 05, 2026
CVSS 9.8
EPSS 0.01
CVE-2025-53335 HIGH
ThemeREX Berger <=1.1.1 - PHP Local File Inclusion
Mar 05, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69406 HIGH
ThemeREX FreightCo <=1.1.7 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69405 CRITICAL
Lorem Ipsum | Books & Media Store <=1.2.6 - Deserialization
Feb 20, 2026
CVSS 9.8
EPSS 0.00
CVE-2025-69404 CRITICAL
ThemeREX Extreme Store <=1.5.7 - Deserialization
Feb 20, 2026
CVSS 9.8
EPSS 0.00
CVE-2025-69402 HIGH
ThemeREX R&F rf <=1.5 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69400 HIGH
ThemeREX Yokoo <=1.1.11 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69399 HIGH
ThemeREX Cobble <=1.7 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69398 HIGH
ThemeREX Plank <=1.7 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69397 HIGH
ThemeREX Tint <=1.7 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69396 HIGH
ThemeREX Splendour <=1.23 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69395 HIGH
ThemeREX Gable <=1.5 - PHP Local File Inclusion
Feb 20, 2026
CVSS 8.1
EPSS 0.01
CVE-2025-69079 CRITICAL
ThemeREX Sound <1.6.9 - Code Injection
Jan 22, 2026
CVSS 9.8
EPSS 0.00
CVE-2025-69081 HIGH
ThemeREX Group Hope <3.0.0 - Code Injection
Jan 07, 2026
CVSS 8.1
EPSS 0.00
Products
ThemeREX Addons 4 addons 4 Puzzles | WP Magazine / Review with Store WordPress Theme + RTL 3 puzzles 3 Abelle 1 AirSupply 1 Aldo 1 Alliance 1 Aqualots 1 Artrium 1 Asia Garden 1 AutoParts 1 Avventure 1 Bassein 1 Bazinga 1 Beacon 1 Berger 1 Bonbon 1 Buisson 1 Choreo 1 Chroma 1 Classter 1 Cobble 1 Coinpress 1 Coleo 1 ConFix 1 Contact Form 7 Multi-Step Addon 1 CopyPress 1 Corbesier 1 Craftis 1
Quick Filters
Critical CVEs With Exploits In CISA KEV