P-themes Porto Theme - Functionality
4 CVEs affecting P-themes Porto Theme - Functionality. Latest disclosed: 2025-12-09. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-3809 | High | 8.8 | 2024-05-14 | The Porto Theme - Functionality plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.0.9 via the 'slideshow_type'… |
CVE-2024-3808 | High | 8.8 | 2024-05-14 | The Porto Theme - Functionality plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.0 via the 'porto_portfolio… |
CVE-2025-63066 | Medium | 6.5 | 2025-12-09 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in p-themes Porto Theme - Functionality porto-functionality… |
CVE-2025-63067 | Medium | 4.3 | 2025-12-09 | Missing Authorization vulnerability in p-themes Porto Theme - Functionality porto-functionality allows Exploiting Incorrectly Configured Access Control Securit… |