Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Rarathemes Subscribe
Total 17 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-37413 1 Rarathemes 1 Preschool And Kindergarten 2026-01-09 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Preschool and Kindergarten allows Cross Site Request Forgery.This issue affects Preschool and Kindergarten: from n/a through 1.2.1.
CVE-2024-37421 1 Rarathemes 1 Jobscout 2026-01-09 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme JobScout allows Cross Site Request Forgery.This issue affects JobScout: from n/a through 1.1.4.
CVE-2024-37426 1 Rarathemes 1 Elegant Pink 2026-01-09 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Elegant Pink allows Cross Site Request Forgery.This issue affects Elegant Pink: from n/a through 1.3.0.
CVE-2024-31428 1 Rarathemes 1 The Conference 2026-01-09 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme The Conference.This issue affects The Conference: from n/a through 1.2.0.
CVE-2024-31384 1 Rarathemes 1 Spa And Salon 2026-01-09 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Spa and Salon.This issue affects Spa and Salon: from n/a through 1.2.7.
CVE-2024-34379 1 Rarathemes 1 Restaurant And Cafe 2026-01-09 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Restaurant and Cafe.This issue affects Restaurant and Cafe: from n/a through 1.2.1.
CVE-2024-37505 1 Rarathemes 1 Business One Page 2026-01-09 N/A 4.3 MEDIUM
Missing Authorization vulnerability in Rara Themes Business One Page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Business One Page: from n/a through 1.2.9.
CVE-2025-23998 1 Rarathemes 1 The Ultralight 2026-01-08 N/A 7.1 HIGH
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rara Theme UltraLight allows Reflected XSS. This issue affects UltraLight: from n/a through 1.2.
CVE-2024-37937 1 Rarathemes 1 Rara Business 2026-01-08 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Rara Business allows Cross Site Request Forgery.This issue affects Rara Business: from n/a through 1.2.5.
CVE-2024-37508 1 Rarathemes 1 Construction Landing Page 2026-01-08 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Construction Landing Page allows Cross Site Request Forgery.This issue affects Construction Landing Page: from n/a through 1.3.5.
CVE-2024-37503 1 Rarathemes 1 Lawyer Landing Page 2026-01-08 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Lawyer Landing Page allows Cross Site Request Forgery.This issue affects Lawyer Landing Page: from n/a through 1.2.4.
CVE-2024-37451 1 Rarathemes 1 Travel Agency 2026-01-08 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Travel Agency allows Cross Site Request Forgery.This issue affects Travel Agency: from n/a through 1.4.9.
CVE-2024-37450 1 Rarathemes 1 Benevolent 2026-01-08 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Benevolent allows Cross Site Request Forgery.This issue affects Benevolent: from n/a through 1.3.4.
CVE-2024-37435 1 Rarathemes 1 Perfect Portfolio 2026-01-08 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Perfect Portfolio allows Cross Site Request Forgery.This issue affects Perfect Portfolio: from n/a through 1.2.0.
CVE-2024-37230 1 Rarathemes 1 Book Landing Page 2024-11-21 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Book Landing Page.This issue affects Book Landing Page: from n/a through 1.2.3.
CVE-2023-24404 1 Rarathemes 1 Vryasage Marketing Performance 2024-11-21 N/A 7.1 HIGH
Reflected Cross-Site Scripting (XSS) vulnerability in VryaSage Marketing Performance plugin <= 2.0.0 versions.
CVE-2022-29451 1 Rarathemes 1 Rara One Click Demo Import 2024-11-21 6.8 MEDIUM 8.8 HIGH
Cross-Site Request Forgery (CSRF) leading to Arbitrary File Upload vulnerability in Rara One Click Demo Import plugin <= 1.2.9 on WordPress allows attackers to trick logged-in admin users into uploading dangerous files into /wp-content/uploads/ directory.