WordPress securityInstantly fix and mitigate vulnerabilities Plugin auditingPaid auditing for WordPress vendors Managed VDPStart a security program for your plugins Bug BountyJoin the community and earn bounties Enterprise APIAt scale monitoring and vPatching for hosts Vulnerability databaseThe latest WordPress security intelligence

Login Start trial

Betheme

N/A

Developer

N/A

Latest version

N/A

Downloads

N/A

Last updated

WordPress Theme

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Vulnerability history

1 present

16 fixed

11 Mitigation rules

Authenticated (Contributor+) Stored Cross-Site Scripting via 'page_title' vulnerability
<= 28.1.6
Oct 8, 2025
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 28.1.3
Aug 5, 2025
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 28.0.3
Apr 15, 2025
Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS vulnerability
<= 27.6.1
Jan 21, 2025
Authenticated (Author+) Stored Cross-Site Scripting via SVG File vulnerability
<= 27.5.5
Sep 13, 2024
Authenticated (Contributor+) PHP Object Injection vulnerability
<= 27.5.6
Aug 30, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
<= 27.5.6
Aug 30, 2024
Contributor+ Broken Access Control vulnerability
<= 27.1.1
Nov 14, 2023
Author+ Broken Access Control vulnerability
<= 27.1.1
Aug 10, 2023
Reflected Cross Site Scripting (XSS) vulnerability
<= 26.7.5
Apr 13, 2023
Broken Access Control vulnerability
<= 26.6.1
Nov 21, 2022
Broken Access Control vulnerability
<= 26.6.1
Nov 21, 2022
Broken Access Control vulnerability
<= 26.6.1
Nov 21, 2022
Broken Access Control vulnerability
<= 26.6.1
Nov 21, 2022
Broken Access Control vulnerability
<= 26.6.1
Nov 21, 2022
Auth. Stored Cross-Site Scripting (XSS) vulnerability
<= 26.6.1
Nov 21, 2022
Auth. PHP Object Injection vulnerability
<= 26.5.1.4
Nov 17, 2022

Vulnerability mitigation

Pricing
Application security (SCA)
RapidMitigate New
Threat Intelligence (API)
Documentation
VS Monarx
VS Imunify360
VS Wordfence
Log in

Code security

Managed VDP New
Active VDP directory 1070
Security auditing
Compliance (CRA) New
Log in New

Bug bounty

Bug bounty
Leaderboard
Guidelines
Learn New
Report
Discord
Log in New

Use cases

Web developers
Webhosts New
Software vendors
WordPress
WooCommerce

Resources

Vulnerability database
Whitepaper 2025 New
Articles
Case studies New
Webinars New
Vulnerability statistics

Patchstack

About
Careers
Merch store
Media kit
LinkedIn
Facebook
X

© 2025 Patchstack

Terms & Conditions