Opstore

Vulnerabilities 6Slug opstoreLatest version 1.4.5WordPress.org →

Minimum safe version

1.4.4

Update to 1.4.4 or later to address 2 fixable vulnerabilities

Latest available1.4.5 ✓Affected up to1.4.3 ⚠⚠ 3 vulnerabilities have no fix

High 7.5 Unfixed

2025-04-24≤ 1.4.5

CVE-2025-39387

Medium 6.5

2022-04-18< 1.4.4

CVE-2022-23975

N/A

2022-01-11< 1.4.4

AccessPress Themes and Plugin <= Various Versions - Cross-Site Request Forgery

N/A Unfixed

2022-01-24≤ 1.4.3

WordPress Opstore theme <= 1.4.3 - Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation

N/A Unfixed

2022-01-28≤ 1.4.3

WordPress Opstore theme <= 1.4.3 - Authenticated Arbitrary Plugin Activation/Deactivation vulnerability

High 8.8

2021-12-24≤ 1.4.3

WordPress Opstore theme <= 1.4.3 - Arbitrary File Upload vulnerability