Lucene search
K

8074 matches found

Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.4 views

CVE-2025-60221 WordPress Captivate Sync Plugin <= 3.0.3 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in captivateaudio Captivate Sync captivatesync-trade allows Object Injection.This issue affects Captivate Sync: from n/a through = 3.0.3...

9.8CVSS6.6AI score0.00529EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/22 2:32 p.m.8 views

EUVD-2025-35407

Deserialization of Untrusted Data vulnerability in captivateaudio Captivate Sync captivatesync-trade allows Object Injection.This issue affects Captivate Sync: from n/a through = 3.0.3...

6.5CVSS6.5AI score0.00529EPSS
Exploits0References2
CVE
CVE
added 2025/10/22 2:32 p.m.15 views

CVE-2025-60221

CVE-2025-60221 concerns the WordPress Captivate Sync Plugin (

9.8CVSS6.6AI score0.00529EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.6 views

CVE-2025-60224 WordPress Subscribe to Download plugin <= 2.0.9 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to-download allows Object Injection.This issue affects Subscribe to Download: from n/a through = 2.0.9...

9.8CVSS6.6AI score0.00529EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.6 views

CVE-2025-60225 WordPress BugsPatrol theme <= 1.5.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in AncoraThemes BugsPatrol bugspatrol allows Object Injection.This issue affects BugsPatrol: from n/a through = 1.5.0...

9.8CVSS6.6AI score0.00541EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/22 2:32 p.m.6 views

EUVD-2025-35405

Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to-download allows Object Injection.This issue affects Subscribe to Download: from n/a through = 2.0.9...

6.5CVSS6.4AI score0.00529EPSS
Exploits0References2
CVE
CVE
added 2025/10/22 2:32 p.m.13 views

CVE-2025-60224

CVE-2025-60224 affects the WordPress Subscribe to Download plugin (versions

9.8CVSS6.6AI score0.00529EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.10 views

CVE-2025-60225

CVE-2025-60225 is a deserialization-of-untrusted-data vulnerability affecting WordPress BugsPatrol theme (≤ 1.5.0). The issue is a PHP Object Injection flaw in BugsPatrol’s deserialization path, as reported across multiple trusted sources. The available connected documents confirm the affected pr...

9.8CVSS6.6AI score0.00541EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.8 views

CVE-2025-60215 WordPress Kriya theme <= 3.4 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in designthemes Kriya kriya allows Object Injection.This issue affects Kriya: from n/a through = 3.4...

8.8CVSS0.00486EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.3 views

CVE-2025-60215 WordPress Kriya theme <= 3.4 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in designthemes Kriya kriya allows Object Injection.This issue affects Kriya: from n/a through = 3.4...

8.8CVSS6.6AI score0.00486EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.10 views

CVE-2025-60216 WordPress Addison theme < 1.4.8 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in BoldThemes Addison addison allows Object Injection.This issue affects Addison: from n/a through 1.4.8...

9.8CVSS0.00529EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.10 views

CVE-2025-60216

CVE-2025-60216 describes a deserialization of untrusted data leading to PHP object injection in the WordPress Addison theme. Multiple sources identify the affected component as the Addison WordPress theme (versions up to and including 1.4.2, with later notices referencing versions up to 1.4.8 for...

9.8CVSS5.9AI score0.00529EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.5 views

CVE-2025-60216 WordPress Addison theme < 1.4.8 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in BoldThemes Addison addison allows Object Injection.This issue affects Addison: from n/a through 1.4.8...

9.8CVSS5.2AI score0.00529EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.9 views

CVE-2025-60214 WordPress Goldenblatt theme < 1.3.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in BoldThemes Goldenblatt goldenblatt allows Object Injection.This issue affects Goldenblatt: from n/a through 1.3.0...

9.8CVSS0.00541EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.3 views

CVE-2025-60214 WordPress Goldenblatt theme < 1.3.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in BoldThemes Goldenblatt goldenblatt allows Object Injection.This issue affects Goldenblatt: from n/a through 1.3.0...

9.8CVSS5.2AI score0.00541EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.15 views

CVE-2025-60214

CVE-2025-60214: A Deserialization of Untrusted Data vulnerability in the WordPress Goldenblatt theme (Goldenblatt) up to version 1.2.1 allows PHP Object Injection. The issue affects Goldenblatt versions n/a—

9.8CVSS5.9AI score0.00541EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.9 views

CVE-2025-60215

The CVE-2025-60215 entry describes a PHP Object Injection vulnerability in the WordPress Kriya theme (versions from and including

8.8CVSS6.6AI score0.00486EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.8 views

CVE-2025-60212

CVE-2025-60212 affects the WordPress plugin/theme Designthemes VEDA (VEDA)

8.8CVSS6.6AI score0.00486EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.10 views

CVE-2025-60213 WordPress Scape theme <= 1.5.13 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Injection.This issue affects Scape: from n/a through = 1.5.13...

9.8CVSS0.00529EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.7 views

CVE-2025-60210 WordPress Everest Forms - Frontend Listing plugin <= 1.0.5 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in wpeverest Everest Forms - Frontend Listing everest-forms-frontend-listing allows Object Injection.This issue affects Everest Forms - Frontend Listing: from n/a through = 1.0.5...

9.8CVSS0.00459EPSS
Exploits0References1
Rows per page
Query Builder