Iqonicdesign Streamit

3 CVEs affecting Iqonicdesign Streamit. Latest disclosed: 2025-04-08. Critical: 0, High: 2.

Top CVEs affecting Iqonicdesign Streamit
CVESeverityScorePublishedSummary
CVE-2025-2526High8.82025-04-08The Streamit theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.0.2. This is due to the plu…
CVE-2025-2525High8.82025-04-08The Streamit theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'st_Authentication_Controller::edit_profile…
CVE-2025-2519Medium6.52025-04-08The Sreamit theme for WordPress is vulnerable to arbitrary file downloads in all versions up to, and including, 4.0.1. This is due to insufficient file validat…