HIGH
Themify
CVE published 2026-06-17
CVE-2025-31013
CVE-2025-31013 is a Reflected Cross-Site Scripting (XSS) vulnerability in Themify Folo, a WordPress theme. This vulnerability, with a CVSS score of 7.1, allows attackers to inject malicious scripts into web pages. The issue affects Themify Folo versions up to 1.9.6. Users of affected versions should apply patches or updates as soon as available. This vulnerability was made public on June 17, 2026.