CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/05 7:12 p.m.•5 views

CVE-2026-39555

Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. This issue affects Askka: from n/a through 1.3.1...

8.1CVSS5.4AI score0.00255EPSS

RedhatCVE•added 2026/06/05 7:12 p.m.•5 views

CVE-2026-39550

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

8.1CVSS5.4AI score0.00308EPSS

CVE•added 2026/06/02 1:34 p.m.•9 views

CVE-2026-39555

The CVE-2026-39555 entry concerns the WordPress Askka theme (versions up to 1.3.1). The vulnerability is a PHP Object Injection via a deserialization of untrusted data in the Askka plugin/theme, allowing object injection. Affected component: WordPress Askka theme

8.1CVSS5.8AI score0.00255EPSS

EUVD•added 2026/06/02 1:34 p.m.•8 views

EUVD-2026-33924

Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. This issue affects Askka: from n/a through 1.3.1...

8.1CVSS5.8AI score0.00255EPSS

NVD•added 2026/06/02 12:16 p.m.•10 views

CVE-2026-39551

Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1...

8.1CVSS0.00308EPSS

NVD•added 2026/06/02 12:16 p.m.•9 views

CVE-2026-39550

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

8.1CVSS0.00308EPSS

ATTACKERKB•added 2026/06/02 10:46 a.m.•7 views

CVE-2026-39551

Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1...

EUVD•added 2026/06/02 10:46 a.m.•10 views

EUVD-2026-33912

Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1...

ATTACKERKB•added 2026/06/02 10:44 a.m.•9 views

CVE-2026-39550

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

EUVD•added 2026/06/02 10:44 a.m.•6 views

EUVD-2026-33911

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

Vulnrichment•added 2026/06/02 10:44 a.m.•7 views

CVE-2026-39550 WordPress Aperitif theme <= 1.6 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

Positive Technologies•added 2026/06/02 12:0 a.m.•5 views

PT-2026-45731

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

Positive Technologies•added 2026/06/02 12:0 a.m.•8 views

PT-2026-45732

Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1...

Positive Technologies•added 2026/06/02 12:0 a.m.•10 views

PT-2026-45754

Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. This issue affects Askka: from n/a through 1.3.1...

8.1CVSS5.8AI score0.00255EPSS

RedhatCVE•added 2026/03/26 5:3 p.m.•2 views

CVE-2026-32507

Deserialization of Untrusted Data vulnerability in Elated-Themes Leroux leroux allows Object Injection.This issue affects Leroux: from n/a through 1.4...

5.4CVSS5.8AI score0.00167EPSS

RedhatCVE•added 2026/03/26 5:1 p.m.•2 views

CVE-2026-24971

Incorrect Privilege Assignment vulnerability in Elated-Themes Search & Go searchgo allows Privilege Escalation.This issue affects Search & Go: from n/a through = 2.8...

9.8CVSS5.8AI score0.00321EPSS

RedhatCVE•added 2026/03/26 5:1 p.m.•2 views

CVE-2026-24972

Missing Authorization vulnerability in Elated-Themes Elated Listing eltd-listing allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elated Listing: from n/a through = 1.4...

6.5CVSS5.8AI score0.00269EPSS

RedhatCVE•added 2026/03/26 5:1 p.m.•2 views

CVE-2026-22498

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Laurent laurent allows PHP Local File Inclusion.This issue affects Laurent: from n/a through = 3.1...

8.1CVSS5.8AI score0.00504EPSS

RedhatCVE•added 2026/03/26 5:1 p.m.•3 views

CVE-2026-22511

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes NeoBeat neobeat allows PHP Local File Inclusion.This issue affects NeoBeat: from n/a through = 1.2...

8.1CVSS5.8AI score0.00504EPSS