GCVE - cpe:2.3:a:thimpress:thim_core:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:thimpress:thim_core:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Thimpress (`3359de0e-d602-5f4a-8b30-12c81ab7a63c`)
Product	Thim Core (`7112d0b1-11f8-5cf8-b507-94e1657c8ee2`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-53346`	vulnerable	2026-06-03 15:03:53.928838	WordPress Thim Core Plugin <= 2.3.3 - Broken Access Control Vulnerability MEDIUM (4.3) Missing Authorization vulnerability in ThimPress Thim Core allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Thim Core: from n/a through 2.3.3. Published: 2026-06-02T09:52:09.457Z Updated: 2026-06-02T10:42:27.958Z Open on db.gcve.eu Reference links https://patchstack.com/database/wordpress/plugin/thim-core/vulnerability/wordpress-thim-core-plugin-plugin-2-3-3-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-53345`	vulnerable	2026-06-03 15:03:53.928699	WordPress Thim Core plugin <= 2.3.3 - Arbitrary Plugin Installation vulnerability HIGH (8.8) Missing Authorization vulnerability leading to code execution after installing malicious vulnerable plugin in ThimPress Thim Core. This issue affects Thim Core: from n/a through 2.3.3. Published: 2026-06-02T09:47:50.705Z Updated: 2026-06-02T10:42:41.985Z Open on db.gcve.eu Reference links https://patchstack.com/database/wordpress/plugin/thim-core/vulnerability/wordpress-thim-core-plugin-2-3-3-arbitrary-code-execution-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-53344`	vulnerable	2026-06-03 15:03:53.928497	WordPress Thim Core Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in ThimPress Thim Core allows Cross Site Request Forgery.This issue affects Thim Core: from n/a through 2.3.3. Published: 2026-01-05T16:42:57.646Z Updated: 2026-04-28T16:13:24.311Z Open on db.gcve.eu Reference links https://patchstack.com/database/wordpress/plugin/thim-core/vulnerability/wordpress-thim-core-plugin-plugin-2-3-3-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.