Wordpress Dark Mode Vulnerabilities

Local File Inclusion Vulnerability in Catch Dark Mode Plugin for WordPress

CVE-2025-10143

WordPressCatch Dark Mode7.5HIGH

Access Control Vulnerability in QS Dark Mode by Quomodosoft

CVE-2025-47628

WordPressQs Dark Mode8.8HIGH

Stored Cross-Site Scripting Vulnerability in Dark Mode Plugin

CVE-2024-9118

WordpressQs Dark Mode Plugin6.4MEDIUM

Cross-Site Request Forgery (CSRF) Vulnerability in Dark Mode for WP Dashboard

CVE-2024-43325

WordPressDark Mode For WP Dashb...8.8HIGH

Unauthorized Data Modification Vulnerability in WP Dark Mode Plugin

CVE-2024-5449

WordpressWP Dark Mode – WordPre...4.3MEDIUM

Dracula Dark Mode Plugin Vulnerable to Cross-site Scripting Attacks

CVE-2024-29771

WordpressDracula Dark Mode - Th...6.5MEDIUM

Unauthorized Modification of Data in Tech News WordPress Theme Due to Missing Capability Check

CVE-2024-2962

WordpressNetworker - Tech News ...5.3MEDIUM

WordPress Droit Dark Mode Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

CVE-2023-47531

WordPressDroit Dark Mode4.3MEDIUM

WP Dark Mode < 4.0.8 - Subscriber+ Local File Inclusion

CVE-2023-0467

WordpressWP Dark Mode👾🟡4.3MEDIUM

Arbitrary File Read Vulnerability in Plus Addons for Elementor Plugin by WordPress

CVE-2021-4332

WordpressThe Plus Addons For El...6.5MEDIUM

Privilege Escalation in Plus Addons for Elementor Plugin by WordPress

CVE-2021-4331

WordpressThe Plus Addons For El...8.8HIGH

WP Dark Mode < 4.0.0 - Contributor+ Stored XSS in Shortcode

CVE-2022-4714

WordpressWP Dark Mode👾🟡5.4MEDIUM

Cross-Site Scripting Vulnerability in Dark Mode Plugin for WordPress

CVE-2018-5651

WordpressDark Mode4.8MEDIUM

Cross-Site Scripting Vulnerability in Dark Mode Plugin for WordPress

CVE-2018-5652

WordpressDark Mode4.8MEDIUM

WordPress Dark Mode Vulnerabilities

Vulnerability Published:

Sort By:

17 September 2025

Local File Inclusion Vulnerability in Catch Dark Mode Plugin for WordPress

7 May 2025

Access Control Vulnerability in QS Dark Mode by Quomodosoft

1 October 2024

Stored Cross-Site Scripting Vulnerability in Dark Mode Plugin

26 August 2024

Cross-Site Request Forgery (CSRF) Vulnerability in Dark Mode for WP Dashboard

6 June 2024

Unauthorized Data Modification Vulnerability in WP Dark Mode Plugin

27 March 2024

Dracula Dark Mode Plugin Vulnerable to Cross-site Scripting Attacks

Unauthorized Modification of Data in Tech News WordPress Theme Due to Missing Capability Check

18 November 2023

WordPress Droit Dark Mode Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

27 March 2023

WP Dark Mode < 4.0.8 - Subscriber+ Local File Inclusion

7 March 2023

Arbitrary File Read Vulnerability in Plus Addons for Elementor Plugin by WordPress

Privilege Escalation in Plus Addons for Elementor Plugin by WordPress

21 February 2023

WP Dark Mode < 4.0.0 - Contributor+ Stored XSS in Shortcode

13 January 2018

Cross-Site Scripting Vulnerability in Dark Mode Plugin for WordPress

Cross-Site Scripting Vulnerability in Dark Mode Plugin for WordPress