Hugo | DevOps | Cybersecurity5d ago

Themeisle: 48 CVEs, max CVSS 9.9. 100% unpatched. Trust Score: D. WordPress themes & plugins with critical flaws—patch now. #Themeisle #WordPress #cybersecurity

https://www.valtersit.com/vendors/themeisle/

Themeisle — Security Dossier | Valters IT Hub

Themeisle has 48 tracked CVEs. Trust score: D. 100% unpatched. Real-time security intelligence.

RedPacket SecurityMay 1

CVE Alert: CVE-2026-2892 - themeisle - Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE - https://www.redpacketsecurity.com/cve-alert-cve-2026-2892-themeisle-otter-blocks-gutenberg-blocks-page-builder-for-gutenberg-editor-fse/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-2892 #themeisle #otter-blocks-gutenberg-blocks-page-builder-for-gutenberg-editor-and-fse

CVE Alert: CVE-2026-2892 - themeisle - Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE - RedPacket Security

The Otter Blocks plugin for WordPress is vulnerable to Purchase Verification Bypass in all versions up to, and including, 3.1.4. This is due to the

RedPacket Security
Patricia BTFeb 10
J'animerai la table de l'équipe Community du projet open source #WordPress lors de la journée de contribution 5 mars, organisée par l'Association WordPress Francophone @wpfr le jour précédent le #WordCamp Nice le 6 mars, où je serai aussi bénévole.
Merci à #Polylang qui sponsorise mon déplacement, et à #Themeisle qui sponsorise 5 heures/semaine de ma contribution à WordPress. On parlera Community, évènements, #GatherPress, WP Credits, Campus Connect (+chocolat suisse?😉🍫)
https://wpfr.net/journee-de-contribution-nice-2026-presentation-des-tables-episode-3/
Journée de Contribution Nice 2026 : tables Hébergement et Communauté

Deux nouvelles tables à découvrir pour la prochaine Journée de Contribution du 5 mars : Hébergement et Communauté. Rendez-vous à Nice !

WPFR
RedPacket SecurityDec 21, 2025

CVE Alert: CVE-2025-14800 - themeisle - Redirection for Contact Form 7 - https://www.redpacketsecurity.com/cve-alert-cve-2025-14800-themeisle-redirection-for-contact-form-7/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-14800 #themeisle #redirection-for-contact-form-7

CVE Alert: CVE-2025-14800 - themeisle - Redirection for Contact Form 7 - RedPacket Security

The Redirection for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the

RedPacket Security
RedPacket SecurityOct 28, 2025

CVE Alert: CVE-2025-10145 - themeisle - Auto Featured Image (Auto Post Thumbnail) - https://www.redpacketsecurity.com/cve-alert-cve-2025-10145-themeisle-auto-featured-image-auto-post-thumbnail/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-10145 #themeisle #auto-featured-image-auto-post-thumbnail

CVE Alert: CVE-2025-10145 - themeisle - Auto Featured Image (Auto Post Thumbnail) - RedPacket Security

The Auto Featured Image (Auto Post Thumbnail) plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.1.7

RedPacket Security
RedPacket SecurityOct 25, 2025

CVE Alert: CVE-2025-9322 - themeisle - Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions - https://www.redpacketsecurity.com/cve-alert-cve-2025-9322-themeisle-stripe-payment-forms-by-wp-full-pay-accept-credit-card-payments-donations-subscriptions/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-9322 #themeisle #stripe-payment-forms-by-wp-full-pay-accept-credit-card-payments-donations-and-subscriptions

CVE Alert: CVE-2025-9322 - themeisle - Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions - RedPacket Security

The Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions plugin for WordPress is vulnerable to SQL Injection via

RedPacket Security
RedPacket SecurityOct 18, 2025

CVE Alert: CVE-2025-11691 - themeisle - PPOM – Product Addons & Custom Fields for WooCommerce - https://www.redpacketsecurity.com/cve-alert-cve-2025-11691-themeisle-ppom-product-addons-custom-fields-for-woocommerce/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-11691 #themeisle #ppom-product-addons-and-custom-fields-for-woocommerce

CVE Alert: CVE-2025-11691 - themeisle - PPOM – Product Addons & Custom Fields for WooCommerce - RedPacket Security

The PPOM – Product Addons & Custom Fields for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the PPOM_Meta::get_fields_by_id()

RedPacket Security