CVE-2025-60220 WordPress CouponXxL theme <= 3.0.0 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in pebas CouponXxL couponxxl allows Privilege Escalation.This issue affects CouponXxL: from n/a through = 3.0.0...

WordPress CouponXxL Theme <= 4.5.0 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Bonds in WordPress Theme CouponXxL versions = 4.5.0...

CVE-2025-58013

CVE-2025-58013 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress CouponXxL theme (CouponXxL) that can enable Privilege Escalation. Affected product: CouponXxL WordPress theme, version range from n/a through 4.5.0. The CVSS score is 8.8 (High) with network attack vector,...

WordPress CouponXxL theme <= 3.0.0 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Bonds in WordPress Theme CouponXxL versions = 3.0.0...

CVE-2025-52725

CVE-2025-52725 describes a deserialization of untrusted data vulnerability in WordPress theme CouponXxL (versions up to 3.0.0). Root cause is PHP Object Injection via untrusted data processing. The issue is rated CRITICAL (CVSSv3.1: Network, Low attack complexity, No user interaction, scope UNCHA...