GCVE - cpe:2.3:a:ex-themes:wp_timeline_–_vertical_and_horizontal_timeline

Approved changes feed: RSS · Atom

cpe:2.3:a:ex-themes:wp_timeline_–_vertical_and_horizontal_timeline_plugin:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Ex Themes (`6e39f51a-e3ea-5250-92cf-baea79bc9b76`)
Product	Wp Timeline – Vertical And Horizontal Timeline Plugin (`63d3f296-33a1-58c6-86cf-164f9b4a3360`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-47324`	vulnerable	2026-06-08 06:48:11.772853	WordPress WP Timeline plugin <= 3.6.7 - Local File Inclusion vulnerability HIGH (7.5) Path Traversal: '.../...//' vulnerability in Ex-Themes WP Timeline – Vertical and Horizontal timeline plugin wp-timelines.This issue affects WP Timeline – Vertical and Horizontal timeline plugin: from n/a through <= 3.6.7. Published: 2024-10-05T12:33:06.952Z Updated: 2026-04-28T16:10:18.866Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/wp-timelines/vulnerability/wordpress-wp-timeline-plugin-3-6-7-local-file-inclusion-vulnerability-2?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-47323`	vulnerable	2026-06-08 06:48:11.772444	WordPress WP Timeline plugin <= 3.6.7 - Local File Inclusion vulnerability HIGH (8.1) Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Ex-Themes WP Timeline – Vertical and Horizontal timeline plugin wp-timelines.This issue affects WP Timeline – Vertical and Horizontal timeline plugin: from n/a through <= 3.6.7. Published: 2024-10-05T12:31:50.181Z Updated: 2026-04-28T16:10:18.678Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/wp-timelines/vulnerability/wordpress-wp-timeline-plugin-3-6-7-local-file-inclusion-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-47322`	vulnerable	2026-06-08 06:48:11.771310	WordPress WP Timeline plugin <= 3.6.7 - Reflected Cross Site Scripting (XSS) vulnerability HIGH (7.1) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ex-Themes WP Timeline – Vertical and Horizontal timeline plugin wp-timelines allows Reflected XSS.This issue affects WP Timeline – Vertical and Horizontal timeline plugin: from n/a through <= 3.6.7. Published: 2024-10-06T11:17:42.541Z Updated: 2026-05-12T22:51:00.560Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/wp-timelines/vulnerability/wordpress-wp-timeline-plugin-3-6-7-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Wp Timeline – Vertical And Horizontal Timeline Plugin

PURL mappings

Vulnerability references

Contribute