8067 matches found
CVE-2026-22417 WordPress Grand Wedding theme < 3.1.11 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Wedding grandwedding allows Object Injection.This issue affects Grand Wedding: from n/a through 3.1.11...
CVE-2026-22417 WordPress Grand Wedding theme < 3.1.11 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Wedding grandwedding allows Object Injection.This issue affects Grand Wedding: from n/a through 3.1.11...
CVE-2025-54001 WordPress Classter theme <= 2.5 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeREX Classter classter allows Object Injection.This issue affects Classter: from n/a through = 2.5...
CVE-2025-54001
CVE-2025-54001 describes a PHP object injection via deserialization in ThemeREX Classter (WordPress Classter theme) affecting Classter versions up to 2.5. The provided Connected documents confirm the root cause (deserialization of untrusted data) and the affected product as Classter theme; no exp...
CVE-2025-54001 WordPress Classter theme <= 2.5 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeREX Classter classter allows Object Injection.This issue affects Classter: from n/a through = 2.5...
WordPress plugin Celeste 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...
WordPress plugin Car Zone 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There ar...
PT-2026-23380
Deserialization of Untrusted Data vulnerability in ThemeREX Good Energy goodenergy allows Object Injection.This issue affects Good Energy: from n/a through = 1.7.7...
PT-2026-23212
Name of the Vulnerable Software and Affected Versions AncoraThemes Jardi versions through 1.7.2 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. Recommendations At the moment, there is no information about a newer version that...
WordPress plugin Equestrian Centre 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
PT-2026-23204
Name of the Vulnerable Software and Affected Versions Secudeal Payments for Ecommerce versions n/a through 1.1 Description The software contains a flaw related to the deserialization of untrusted data, which allows for object injection. This issue impacts Secudeal Payments for Ecommerce...
PT-2026-23138
Name of the Vulnerable Software and Affected Versions ThemeREX Classter versions through 2.5 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. Recommendations Versions prior to 2.5 should be updated...
PT-2026-23216
Name of the Vulnerable Software and Affected Versions blubrry PowerPress Podcasting versions through 11.15.10 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. This issue impacts PowerPress Podcasting. Recommendations Update...
WordPress plugin Podlove Web Player 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-23254
Deserialization of Untrusted Data vulnerability in NextScripts NextScripts social-networks-auto-poster-facebook-twitter-g allows Object Injection.This issue affects NextScripts: from n/a through = 4.4.7...
WordPress plugin Estate 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-23221
Name of the Vulnerable Software and Affected Versions Podlove Web Player versions through 5.9.1 Description The Podlove Web Player contains a flaw due to deserialization of untrusted data, which can lead to object injection. This issue allows for potential exploitation through the deserialization...
WordPress plugin PowerPress Podcasting 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-23167
Name of the Vulnerable Software and Affected Versions ThemeGoods Grand Wedding versions through 3.1.0 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. Recommendations Update to a version later than 3.1.0...
PT-2026-23195
Name of the Vulnerable Software and Affected Versions ThemeREX Pets Club versions prior to 2.3 Description A flaw exists in ThemeREX Pets Club that allows for object injection due to deserialization of untrusted data. This issue impacts the petclub component. Recommendations Update to a version...