Purethemes Workscout-core
4 CVEs affecting Purethemes Workscout-core. Latest disclosed: 2026-06-17. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-59572 | High | 8.8 | 2025-09-22 | Cross-Site Request Forgery (CSRF) vulnerability in purethemes WorkScout-Core workscout-core allows Cross Site Request Forgery.This issue affects WorkScout-Core… |
CVE-2025-67960 | High | 7.1 | 2026-01-22 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in purethemes WorkScout-Core workscout-core allows Reflected… |
CVE-2025-59571 | High | 7.1 | 2025-10-22 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in purethemes WorkScout-Core workscout-core allows Reflected… |
CVE-2026-52716 | Medium | 6.5 | 2026-06-17 | Unauthenticated Arbitrary File Deletion in WorkScout-Core <= 1.7.11 versions. |