[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fridzsebfj1tAosDdI6CWA-c03npYn7rcEQEzQ48SBbo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":15,"homepage":16,"security_score":17,"vuln_count":18,"unpatched_count":19,"last_vuln_date":20,"fetched_at":21,"vulnerabilities":22,"developer":39},"colibri-wp","Colibri WP","1.0.144","extendthemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fextendthemes\u002F","A beautiful, very customizable, multipurpose theme that you can use to create amazing websites through drag and drop. It comes with a pre-designed home page, 5 header designs and over 35 ready-to-use content blocks that you can easily customize. You can also design your own custom blocks by combining more than 25 drag and drop components. It offers lots of customization options (video background, slideshow background, header content types, etc) to help you create a website that stands out in no time. It is also designed with responsiveness, to work on mobile devices right out of the box. It is the only theme you will ever need! CHECK OUT THE DEMOS: https:\u002F\u002Fcolibriwp.com\u002Fgo\u002Fdemos",50000,1537143,96,265,"2025-11-25T00:00:00.000Z","","https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fcolibri-wp\u002F",100,1,0,"2024-02-22 00:00:00","2026-03-16T12:54:35.829Z",[23],{"id":24,"url_slug":25,"title":26,"description":27,"plugin_slug":28,"theme_slug":4,"affected_versions":29,"patched_in_version":30,"severity":31,"cvss_score":32,"cvss_vector":33,"vuln_type":34,"published_date":20,"updated_date":35,"references":36,"days_to_patch":18,"patch_diff_files":38,"patch_trac_url":28},"CVE-2024-1360","colibri-wp-cross-site-request-forgery-to-limited-plugin-installation","Colibri WP \u003C= 1.0.94 - Cross-Site Request Forgery to Limited Plugin Installation","The Colibri WP theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.94. This is due to missing or incorrect nonce validation on the colibriwp_install_plugin() function. This makes it possible for unauthenticated attackers to install recommended plugins via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=1.0.94","1.0.101","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2024-02-23 11:03:46",[37],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fdb56844f-9988-4f6a-ba1d-f190ff009f2b?source=api-prod",[],{"slug":7,"display_name":40,"profile_url":8,"plugin_count":41,"total_installs":42,"avg_security_score":43,"avg_patch_time_days":44,"trust_score":45,"computed_at":46},"Extend Themes",60,429400,99,92,78,"2026-04-07T19:45:05.211Z"]