Pricing
Case studies
Login
Start trial
Kirki
Themeum
Developer
6.0.13
Latest version
500,000
Installations
No date
Last updated
WordPress Plugin
No VDP
See changelog
Claim ownership
Report vulnerability
Vulnerabilities
Security Contributors
Vulnerability history
1 present
10 patched
8 Mitigation rules
PHP Object Injection vulnerability
<= 6.0.12
6 days ago
Cross Site Scripting (XSS) vulnerability
<= 6.0.11
6 days ago
SQL Injection vulnerability
<= 6.0.12
6 days ago
Broken Access Control vulnerability
<= 6.0.13
6 days ago
Missing Authorization to Unauthenticated Sensitive Information Exposure vulnerability
<= 6.0.11
01/07/2026
Missing Authorization to Unauthenticated Arbitrary Email Content Injection (Mail Relay / Phishing) vulnerability
<= 6.0.11
01/07/2026
Insecure Direct Object References (IDOR) vulnerability
<= 6.0.11
30/06/2026
Server Side Request Forgery (SSRF) vulnerability
<= 6.0.11
26/06/2026
Unauthenticated Privilege Escalation via 'handle_forgot_password' vulnerability
6.0.0-6.0.6
01/06/2026
Missing Authorization to Authenticated (Subscriber+) Sensitive Form Submission Data Exposure vulnerability
<= 6.0.6
25/05/2026
Unauthenticated Limited Arbitrary File Read and Deletion vulnerability
<= 6.0.6
21/05/2026