4 matches found
CVE-2025-68903 WordPress Anona theme <= 8.0 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in AivahThemes Anona anona allows Object Injection.This issue affects Anona: from n/a through = 8.0...
CVE-2025-68902
CVE-2025-68902 is a path traversal vulnerability in WordPress theme Anona (AivahThemes) affecting versions up to and including 8.0. The issue allows unrestricted path traversal to download arbitrary files. Red Hat and NVD corroborate the exposure. Mitigation: upgrade Anona to a version later than...
CVE-2025-68901
CVE-2025-68901 affects AivahThemes Anona (WordPress Theme) up to version 8.0. Root cause is path traversal due to improper limitation of a pathname to a restricted directory, enabling unauthorized file access and potentially arbitrary file operations. Connected sources corroborate a related Arbit...
WordPress Anona theme <= 8.0 - Arbitrary File Deletion vulnerability
Arbitrary File Deletion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Anona versions = 8.0...