CVE-2025-64195 WordPress Eduma theme <= 5.7.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThimPress Eduma eduma allows PHP Local File Inclusion.This issue affects Eduma: from n/a through = 5.7.6...

CVE-2025-64195 WordPress Eduma theme <= 5.7.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThimPress Eduma eduma allows PHP Local File Inclusion.This issue affects Eduma: from n/a through = 5.7.6...

CVE-2025-64194 WordPress Eduma theme <= 5.7.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThimPress Eduma eduma allows Stored XSS.This issue affects Eduma: from n/a through = 5.7.6...

CVE-2025-64194

CVE-2025-64194 is a stored XSS vulnerability in the WordPress Eduma theme (Eduma

CVE-2025-64194 WordPress Eduma theme <= 5.7.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThimPress Eduma eduma allows Stored XSS.This issue affects Eduma: from n/a through = 5.7.6...

WordPress Eduma theme <= 5.7.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Eduma versions = 5.7.6...

CVE-2025-39460

CVE-2025-39460 affects WordPress Eduma theme versions up to 5.6.4 and represents a Missing Authorization / Broken Access Control issue. The vulnerability is tied to overly permissive access control, enabling exploitation due to incorrectly configured security levels. Patchstack reports a fix in E...

CVE-2025-39460 WordPress Eduma theme <= 5.6.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThimPress Eduma eduma allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eduma: from n/a through = 5.6.4...

CVE-2025-39460 WordPress Eduma theme <= 5.6.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThimPress Eduma eduma allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eduma: from n/a through = 5.6.4...

WordPress Eduma theme <= 5.6.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Eduma versions = 5.6.4...

WordPress Eduma Theme <= 5.6.4 is vulnerable to Broken Access Control

Software Eduma Type Theme Vulnerable versions = 5.6.4 Fixed in 5.6.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-39460 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a30089a9390c Credits Ananda Dhakal Patchstack Required...

WordPress Eduma theme <= 5.4.7 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme Eduma versions = 5.4.7...

WordPress Eduma Theme <= 5.4.7 is vulnerable to Cross Site Scripting (XSS)

Software Eduma Type Theme Vulnerable versions = 5.4.7 Fixed in 5.4.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35697 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2f915e1861e8 Credits Rafie Muhammad Patchstack Required privileg...