This page aggregates publicly disclosed CVE and security risk information related to themesbrand, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-40514 | Insecure Permissions vulnerability in themesebrand Chatvia v.5.3.2 allows a remote attacker to escalate privileges via the User profile name and image upload functions. | [email protected] | 4.6 | 0.11% | 2025-01-16 | 2025-09-30 |
| CVE-2024-40513 | An issue in themesebrand Chatvia v.5.3.2 allows a remote attacker to execute arbitrary code via the User profile Upload image function. | [email protected] | 4.6 | 1.32% | 2025-01-16 | 2025-09-30 |