Lucene search
K

457720 matches found

Cvelist
Cvelist
added 2026/06/16 8:57 p.m.23 views

CVE-2026-39578 WordPress Valiance theme <= 1.2 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Valiance = 1.2 versions...

5.5CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.21 views

CVE-2026-39567 WordPress Santé theme <= 1.5.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Santé = 1.5.1 versions...

8.1CVSS0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.22 views

CVE-2026-39557 WordPress NeoBeat theme <= 1.7 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in NeoBeat = 1.7 versions...

8.1CVSS0.00395EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.10 views

CVE-2026-39557

CVE-2026-39557 describes an unauthenticated PHP Object Injection in the WordPress NeoBeat theme, version ≤ 1.7. The underlying issue is a PHP object injection vulnerability in NeoBeat’s code path, enabling unauthenticated attackers to potentially manipulate objects and achieve arbitrary code exec...

8.1CVSS5.3AI score0.00395EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.7 views

CVE-2026-39567

CVE-2026-39567 concerns the WordPress Santé theme (versions ≤ 1.5.1) with an unauthenticated PHP Object Injection vulnerability. The issue arises in Santé’s PHP handling, enabling an attacker with network access (no user interaction, no privileges) to exploit a PHP Object Injection vector. The CV...

8.1CVSS5.3AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.22 views

CVE-2026-39554 WordPress Fidalgo theme <= 1.2.2 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Fidalgo = 1.2.2 versions...

8.1CVSS0.00308EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.7 views

CVE-2026-39554

CVE-2026-39554 concerns WordPress Theme Fidalgo (versions

8.1CVSS5.3AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.20 views

CVE-2026-39529 WordPress Elementra theme <= 1.0.9 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Elementra = 1.0.9 versions...

9.8CVSS0.00375EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.26 views

CVE-2026-39539 WordPress Alloggio - Hotel Booking theme <= 2.1.2 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Alloggio - Hotel Booking = 2.1.2 versions...

8.1CVSS0.00308EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.13 views

CVE-2026-39529

The CVE identifies an unauthenticated PHP Object Injection in WordPress Elementra theme

9.8CVSS5.3AI score0.00375EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.15 views

CVE-2026-39539

Summary: CVE-2026-39539 concerns unauthenticated PHP Object Injection in the WordPress plugin/theme “Alloggio - Hotel Booking” versions ≤ 2.1.2. The affected component is the Alloggio Hotel Booking theme; the underlying issue is described as a PHP Object Injection vulnerability. The CVSS base sco...

8.1CVSS5.3AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.20 views

CVE-2026-39443 WordPress EmallShop theme <= 2.4.21 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in EmallShop = 2.4.21 versions...

8.1CVSS0.00308EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.11 views

CVE-2026-39443

CVE-2026-39443 affects the WordPress EmallShop theme (versions &lt;= 2.4.21). It is an unauthenticated PHP object injection vulnerability. According to Patchstack metrics, impact is High for confidentiality, integrity, and availability, with CVSS 3.1: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H and a bas...

8.1CVSS5.3AI score0.00308EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.12 views

CVE-2026-39446

The CVE-2026-39446 entry describes an unauthenticated PHP Object Injection in WordPress Kapee theme versions prior to 1.7.0. The root cause is a PHP object injection flaw in the Kapee theme’s code path, enabling an attacker with network access and no user interaction to trigger impact. Impact is ...

8.1CVSS5.3AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.22 views

CVE-2026-39446 WordPress Kapee theme < 1.7.0 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Kapee 1.7.0 versions...

8.1CVSS0.00308EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.17 views

CVE-2026-39438

CVE-2026-39438 : Unauthenticated SQL Injection in the WordPress ListingPro plugin (versions

9.3CVSS5.7AI score0.00372EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.35 views

CVE-2026-39438 WordPress ListingPro plugin <= 2.9.10 - SQL Injection vulnerability

Unauthenticated SQL Injection in ListingPro = 2.9.10 versions...

9.3CVSS0.00372EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.10 views

CVE-2026-27429

CVE-2026-27429 concerns the WordPress Nifty theme (versions

9.8CVSS5.3AI score0.00556EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.18 views

CVE-2026-27429 WordPress Nifty theme <= 1.4.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Nifty = 1.4.1 versions...

9.8CVSS0.00556EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.24 views

CVE-2026-12256 WordPress Avada theme <= 3.15.3 - PHP Object Injection vulnerability

Contributor PHP Object Injection in Avada = 3.15.3 versions...

8.8CVSS0.00482EPSS
Exploits0References1
Rows per page
Query Builder