CVE-2026-32515 WordPress Miraculous theme < 2.1.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Miraculous: from n/a through 2.1.2...

CVE-2026-32515

CVE-2026-32515 is documented in Wordfence Intelligence as a Missing Authorization vulnerability affecting Miraculous: Multi Vendor Online Music Store Elementor WordPress Theme, versioned &lt; 2.1.2. The Wordfence weekly report also lists related Miraculous entries (e.g., Miraculous Core

WordPress Miraculous theme < 2.1.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Theme Miraculous versions 2.1.2...

CVE-2025-58629 WordPress Miraculous theme < 2.0.9 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Miraculous: from n/a through 2.0.9...

CVE-2025-58629 WordPress Miraculous theme < 2.0.9 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Miraculous: from n/a through 2.0.9...

CVE-2025-58629

CVE-2025-58629 affects the WordPress Miraculous theme prior to version 2.0.9, with a Missing Authorization vulnerability that enables exploitation of improperly configured access controls to perform arbitrary content deletion. Affected component is the Miraculous WordPress theme; root cause is mi...

CVE-2025-58628 WordPress Miraculous Theme < 2.0.9 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kamleshyadav Miraculous miraculous allows Blind SQL Injection.This issue affects Miraculous: from n/a through 2.0.9...

CVE-2025-58628 WordPress Miraculous Theme < 2.0.9 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kamleshyadav Miraculous miraculous allows Blind SQL Injection.This issue affects Miraculous: from n/a through 2.0.9...

CVE-2025-58628

CVE-2025-58628 refers to a SQL injection vulnerability in the WordPress theme Miraculous (versions before 2.0.9). The issue is caused by improper neutralization of special elements in SQL commands, enabling blind SQL injection. Public writeups and vulnerability feeds confirm affected software as ...

WordPress Miraculous Theme < 2.0.9 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Miraculous versions 2.0.9...

WordPress Miraculous theme < 2.0.9 - Arbitrary Content Deletion vulnerability

Arbitrary Content Deletion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Miraculous versions 2.0.9...

WordPress Miraculous Theme < 2.0.9 is vulnerable to SQL Injection

Software Miraculous Type Theme Vulnerable versions 2.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2025-58628 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 1d5cba84a439 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity Required...