Themehorse

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-50436 1Themehorse 1Clean Retina Apr 23, 2026 Oct 28, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themehorse Clean Retina clean-retina.This issue affects Clean Retina: from n/a through <= 3.0.6.
CVE-2024-50435 1Themehorse 1Meta News Apr 23, 2026 Oct 28, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themehorse Meta News meta-news.This issue affects Meta News: from n/a through <= 1.1.7.
CVE-2024-50434 1Themehorse 1Newscard Apr 23, 2026 Oct 28, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themehorse NewsCard newscard.This issue affects NewsCard: from n/a through <= 1.3.
CVE-2024-49701 1Themehorse 1Mags Apr 23, 2026 Oct 23, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themehorse Mags mags.This issue affects Mags: from n/a through <= 1.1.6.
CVE-2024-35758 1Themehorse 1Interface Nov 21, 2024 Jun 21, 2024 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Theme Horse Interface allows Stored XSS.This issue affects Interface: from n/a through 3.1.0.
CVE-2024-33537 1Themehorse 1Wp Portfolio Apr 28, 2026 Apr 29, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Theme Horse WP Portfolio allows Stored XSS.This issue affects WP Portfolio: from n/a through 2.4.