OceanWP

OceanWP

Developer

4.1.4

Latest version

500,000

Downloads

Nov 24, 2025

Last updated

WordPress Theme

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

0 present

6 fixed

2 Mitigation rules

Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript Library vulnerability
<= 3.6.0
4 hours ago
Subscriber+ Limited Option Update vulnerability
< 4.1.2
Sep 5, 2025
WordPress OceanWP plugin <= 4.0.9 - 4.1.1 - Cross-Site Request Forgery to Ocean Extra Plugin Installation vulnerability
4.0.9 - 4.1.1
Aug 12, 2025
Stored Cross-Site Scripting via Select HTML Tag vulnerability
<= 4.0.9
Jun 19, 2025
Missing Authorization to Sensitive Information Exposure via Limited Local File Inclusion vulnerability
<= 3.5.4
Mar 29, 2024
Authenticated Local File Inclusion vulnerability
<= 3.4.1
Feb 27, 2023