Themerex Addons vulnerabilities
4 known vulnerabilities affecting themerex/addons.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
2
Severity breakdown
CRITICAL2HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2020-10257P1CRITICALCVSS 9.8ExploitedPoCv1.70.3v1.6.67+39 more2020-03-10
CVE-2020-10257 [CRITICAL] CWE-94 CVE-2020-10257: The ThemeREX Addons plugin before 2020-03-09 for WordPress lacks access control on the /trx_addons/v
The ThemeREX Addons plugin before 2020-03-09 for WordPress lacks access control on the /trx_addons/v2/get/sc_layout REST API endpoint, allowing for PHP functions to be executed by any users, because includes/plugin.rest-api.php calls trx_addons_rest_get_sc_layout with an unsafe sc parameter.
nvd
CVE-2024-13448P1CRITICALCVSS 9.8Exploitedfixed in 2.34.02025-01-28
CVE-2024-13448 [CRITICAL] CWE-434 CVE-2024-13448: The ThemeREX Addons plugin for WordPress is vulnerable to arbitrary file uploads due to missing file
The ThemeREX Addons plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'trx_addons_uploads_save_data' function in all versions up to, and including, 2.32.3. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code exe
nvd
CVE-2025-0682P3HIGHCVSS 8.8fixed in 2.34.02025-01-25
CVE-2025-0682 [HIGH] CWE-98 CVE-2025-0682: The ThemeREX Addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to
The ThemeREX Addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.33.0 via the 'trx_sc_reviews' shortcode 'type' attribute. This makes it possible for authenticated attackers, with contributor-level and above permissions, to include and execute arbitrary files on the server, allowing the execution of a
nvd
CVE-2025-6997P4MEDIUMCVSS 5.4fixed in 2.35.2.22025-07-19
CVE-2025-6997 [MEDIUM] CWE-79 CVE-2025-6997: The ThemeREX Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File u
The ThemeREX Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.35.1.1 due to insufficient input sanitization and output escaping. The plugin’s SVG rendering routine calls the trx_addons_get_svg_from_file() function on an unvalidated 'svg' parameter supplied via the shor
nvd