CVE-2025-67619

CVE-2025-67619 describes a PHP object-injection via deserialization in the WordPress Kids Heaven theme (Kids Heaven: kids-world) for versions up to and including 3.2. Root cause: deserialization of untrusted data leading to object injection. Impact: high (per CVSS) across confidentiality, integri...

CVE-2025-67619

Deserialization of Untrusted Data vulnerability in designthemes Kids Heaven kids-world allows Object Injection.This issue affects Kids Heaven: from n/a through = 3.2...

CVE-2025-67619 WordPress Kids Heaven theme <= 3.2 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in designthemes Kids Heaven kids-world allows Object Injection.This issue affects Kids Heaven: from n/a through = 3.2...

CVE-2025-67617

Deserialization of Untrusted Data vulnerability in themeton Consult Aid consultaid allows Object Injection.This issue affects Consult Aid: from n/a through = 1.4.3...

CVE-2025-67617 WordPress Consult Aid theme <= 1.4.3 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in themeton Consult Aid consultaid allows Object Injection.This issue affects Consult Aid: from n/a through = 1.4.3...

CVE-2025-67617 WordPress Consult Aid theme <= 1.4.3 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in themeton Consult Aid consultaid allows Object Injection.This issue affects Consult Aid: from n/a through = 1.4.3...

CVE-2025-67617

CVE-2025-67617 is a deserialization of untrusted data vulnerability in the themeton Consult Aid WordPress theme (affected versions up to 1.4.3). The underlying issue is PHP Object Injection via untrusted data deserialization, exposed for the Consult Aid: Business Consulting and Finance PSD produc...

CVE-2025-50004

Deserialization of Untrusted Data vulnerability in artbees JupiterX Core jupiterx-core allows Object Injection.This issue affects JupiterX Core: from n/a through = 4.10.1...

CVE-2025-50004 WordPress JupiterX Core plugin <= 4.10.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in artbees JupiterX Core jupiterx-core allows Object Injection.This issue affects JupiterX Core: from n/a through = 4.10.1...

CVE-2025-50004

CVE-2025-50004 describes a deserialization of untrusted data vulnerability in the WordPress plugin JupiterX Core (jupiterx-core), enabling PHP Object Injection. Affected versions are JupiterX Core

CVE-2025-50004 WordPress JupiterX Core plugin <= 4.10.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in artbees JupiterX Core jupiterx-core allows Object Injection.This issue affects JupiterX Core: from n/a through = 4.10.1...

WordPress Eventin plugin <= 4.1.3 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by w41bu1 in WordPress Plugin Eventin versions = 4.1.3...

WordPress plugin Anona: code-related vulnerabilities

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There we...

WordPress plugin Kids Heaven: Code-related vulnerabilities

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There we...

WordPress plugin Dental Care CPT: Code-related vulnerabilities

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

WordPress Plugin Consult Aid: Code Issues and Vulnerabilities

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There ar...

PT-2026-4016

Name of the Vulnerable Software and Affected Versions themeton Consult Aid versions through 1.4.3 Description A flaw exists in themeton Consult Aid that allows for object injection due to deserialization of untrusted data. This condition can be exploited by attackers to potentially compromise the...

PT-2026-4124

Name of the Vulnerable Software and Affected Versions strongholdthemes Tech Life CPT versions n/a through 16.4 Description An issue exists in strongholdthemes Tech Life CPT that allows for Object Injection due to deserialization of untrusted data. This impacts the techlife-cpt component...

WordPress plugin Tech Life CPT code issue vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There we...

PT-2026-4123

Name of the Vulnerable Software and Affected Versions strongholdthemes Dental Care CPT versions through 20.2 Description A flaw exists in strongholdthemes Dental Care CPT that allows for Object Injection due to deserialization of untrusted data. This issue impacts the dentalcare-cpt component...