SecAlerts
CVE ListPricingSign Up
g5theme logo

g5theme

Security Risk Profile

45
/100
medium

Security Risk Score

Comprehensive risk assessment based on 14 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from December 12, 2022 to present

14
Total CVEs
9
Critical+High
0
Exploited
8
Unpatched

Threat Assessment

Avg CVSS
6.8
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
8
Critical/High
Risk Level
45/100
medium

Severity Distribution

Critical
1
High
8
Medium
5
Low
0

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
5

Age Distribution

Common Weaknesses (CWE)

1
XSS
7
2
CSRF
1

Most Affected Products

1. G5Theme Essential Real Estate3
2. G5Theme Handmade Framework2
3. G5plus Essential Real Estate Wordpress2
4. G5Theme Grid Plus Wordpress2
5. G5Theme G5Plus April1

Recent Vulnerabilities

See more →
CVE-2026-39714
CVSS 5.3medium

WordPress G5Plus April theme <= 6.8 - Broken Access Control vulnerability

4/8/2026🔧 No Patch
CVE-2026-27088
CVSS 7.1high

WordPress Darna Framework plugin <= 2.9 - Reflected Cross Site Scripting (XSS) vulnerability

3/25/2026🔧 No Patch
CVE-2026-27087
CVSS 7.1high

WordPress Wolverine Framework plugin <= 1.9 - Reflected Cross Site Scripting (XSS) vulnerability

3/25/2026🔧 No Patch
CVE-2026-22520
CVSS 7.1high

WordPress Handmade Framework plugin <= 3.9 - Reflected Cross Site Scripting (XSS) vulnerability

3/25/2026🔧 No Patch
CVE-2025-69096
CVSS 7.1high

WordPress Zorka theme <= 1.5.7 - Reflected Cross Site Scripting (XSS) vulnerability

3/25/2026🔧 No Patch
CVE-2026-22521
CVSS 7.5EPSS 0%high

WordPress Handmade Framework plugin <= 3.9 - Local File Inclusion vulnerability

1/8/2026🔧 No Patch
CVE-2025-68071
CVSS 6.5medium

WordPress Essential Real Estate plugin <= 5.3.2 - Insecure Direct Object References (IDOR) vulnerability

12/16/2025🔧 No Patch
CVE-2025-53352
CVSS 7.1high

WordPress Grid Plus plugin <= 3.3 - Cross Site Scripting (XSS) vulnerability

10/22/2025🔧 No Patch
CVE-2025-30849
CVSS 9.8EPSS 0%critical

WordPress Essential Real Estate plugin <= 5.2.0 - Local File Inclusion Vulnerability

4/1/2025
CVE-2025-24698
CVSS 4.3EPSS 0%medium

WordPress Essential Real Estate plugin <= 5.1.8 - Cross Site Request Forgery (CSRF) vulnerability

1/24/2025

Monitor g5theme in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.

g5theme Security Vulnerabilities & Risk Score | 14 CVEs | SecAlerts - SecAlerts