WordPress SALESmanago & Leadoo plugin <= 3.11.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by endy in WordPress Plugin SALESmanago & Leadoo versions = 3.11.2...

WordPress JetBooking plugin <= 4.0.4.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by daroo in WordPress Plugin JetBooking versions = 4.0.4.1...

EUVD-2026-37697

Unauthenticated PHP Object Injection in Château = 1.2.1 versions...

CVE-2026-40757 WordPress Château theme <= 1.2.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Château = 1.2.1 versions...

EUVD-2026-37698

Unauthenticated PHP Object Injection in Moderno 1.43 versions...

EUVD-2026-37695

Unauthenticated PHP Object Injection in Manufaktur Solutions = 1.1.1 versions...

CVE-2026-40756 WordPress Zoya theme <= 1.4 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Zoya = 1.4 versions...

EUVD-2026-37696

Unauthenticated PHP Object Injection in Zoya = 1.4 versions...

CVE-2026-40752 WordPress Manufaktur Solutions theme <= 1.1.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Manufaktur Solutions = 1.1.1 versions...

CVE-2026-40738 WordPress Eldon theme <= 1.4.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Eldon = 1.4.1 versions...

EUVD-2026-37694

Unauthenticated PHP Object Injection in Eldon = 1.4.1 versions...

EUVD-2026-37693

Unauthenticated PHP Object Injection in ShiftUp = 1.3 versions...

CVE-2026-40733 WordPress ShiftUp theme <= 1.3 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in ShiftUp = 1.3 versions...

CVE-2026-39560 WordPress Hiroshi theme <= 1.5.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Hiroshi = 1.5.1 versions...

CVE-2026-39576 WordPress SingleMalt theme <= 1.5 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in SingleMalt = 1.5 versions...

EUVD-2026-37689

Unauthenticated PHP Object Injection in Hiroshi = 1.5.1 versions...

EUVD-2026-37690

Unauthenticated PHP Object Injection in SingleMalt = 1.5 versions...

CVE-2026-39556 WordPress Konsept theme <= 1.9 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Konsept = 1.9 versions...

EUVD-2026-37687

Unauthenticated PHP Object Injection in Konsept = 1.9 versions...

CVE-2026-39445 WordPress Alukas theme < 3.0.0 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Alukas 3.0.0 versions...