CherryFramework Themes

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2018-25437	WordPress CherryFramework Themes	Hig	0.49	7.5	—		Jun 15, 2026	WordPress CherryFramework Themes 3.1.4 contains an information disclosure vulnerability that allows unauthenticated attackers to download sensitive backup files by accessing the download_backup.php endpoint. Attackers can directly access the download_backup.php script in the…

CVE-2018-25437HigJun 15, 2026
WordPress
CherryFramework Themes
risk 0.49cvss 7.5epss —
WordPress CherryFramework Themes 3.1.4 contains an information disclosure vulnerability that allows unauthenticated attackers to download sensitive backup files by accessing the download_backup.php endpoint. Attackers can directly access the download_backup.php script in the…