Favethemes Houzez Theme - Functionality

5 CVEs affecting Favethemes Houzez Theme - Functionality. Latest disclosed: 2026-01-22. Critical: 0, High: 3.

Top CVEs affecting Favethemes Houzez Theme - Functionality
CVESeverityScorePublishedSummary
CVE-2024-5793High8.82024-07-09The Houzez Theme - Functionality plugin for WordPress is vulnerable to SQL Injection via the ‘currency_code’ parameter in all versions up to, and including, 3…
CVE-2025-62054High7.52025-10-22Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in favethemes Houzez Theme - Functionalit…
CVE-2025-62057High7.12025-11-06Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in favethemes Houzez Theme - Functionality houzez-theme-func…
CVE-2026-24355Medium6.52026-01-22Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in favethemes Houzez Theme - Functionality houzez-theme-func…
CVE-2025-62058Medium6.52025-10-22Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in favethemes Houzez Theme - Functionality houzez-theme-func…