Darendev Simple Theme Changer
2 CVEs affecting Darendev Simple Theme Changer. Latest disclosed: 2025-12-12. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-14392 | Medium | 4.3 | 2025-12-12 | The Simple Theme Changer plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the user_theme_admin, dis… |
CVE-2025-14391 | Medium | 4.3 | 2025-12-12 | The Simple Theme Changer plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0. This is due to missing or inco… |