Ibtana

VW THEMES

Developer

1.2.5.6

Latest version

20,000

Installations

No date

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

1 present

8 fixed

4 Mitigation rules

Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability
<= 1.2.5.1
Nov 20, 2025
Arbitrary Content Deletion Vulnerability
<= 1.2.5.3
Sep 22, 2025
Cross Site Scripting (XSS) vulnerability
<= 1.2.5.6
Feb 24, 2025
Authenticated (Contributor+) Stored Cross-Site Scripting via align Attribute vulnerability
<= 1.2.4.4
Oct 2, 2024
Broken Access Control vulnerability
<= 1.2.3.3
Jun 20, 2024
Unauthenticated Plugin Settings Update vulnerability
<= 1.2.3.3
Jun 17, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
<= 1.2.2
Dec 11, 2023
Contributor+ Stored XSS vulnerability
< 1.1.8.8
Jan 11, 2023
Plugin Settings Update vulnerability leading to Stored Cross-Site Scripting (XSS)
<= 1.1.4.8
Jan 12, 2022