CVE-2026-28105
CVE-2026-28105 describes a deserialization of untrusted data vulnerability in the WordPress theme Good Energy (ThemeREX Good Energy) affecting version ranges from n/a up to and including 1.7.7. The underlying issue is PHP Object Injection via deserialization, enabling an attacker to inject object...