Latest

Authentication vulnerability in DWT – Directory & Listing WordPress Theme 3.3.6

CVE-2024-12827

Severity: critical
Status: Fixed
Publication: June 26, 2025

The DWT – Directory & Listing WordPress Theme is a theme for WordPress that has a security vulnerability. This vulnerability allows someone to gain access to another user’s account by changing their password, even if they are not authorized to do so. This can be used to gain access to important accounts, like an administrator’s account.

Detected in:

DWT - Directory & Listing WordPress Theme fixed vulnerable versions: >= * <= 3.3.6

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 Not Found errors detected on your homepage

Authentication vulnerability in DWT – Directory & Listing WordPress Theme 3.3.6

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 Not Found errors detected on your homepage

Authentication vulnerability in DWT – Directory & Listing WordPress Theme 3.3.6

Detected in: