5 matches found
CVE-2025-58210
CVE-2025-58210 describes a Missing Authorization issue in the ThemeMove Makeaholic WordPress theme. The vulnerability affects Makeaholic versions up to and including 1.8.5, stemming from incorrectly configured access control that allows unauthorized access. Multiple connected sources corroborate ...
WordPress Makeaholic Theme <= 1.8.4 - Local File Inclusion Vulnerability
Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Makeaholic versions = 1.8.4...
CVE-2025-54700 WordPress Makeaholic Theme <= 1.8.4 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove Makeaholic makeaholic allows PHP Local File Inclusion.This issue affects Makeaholic: from n/a through = 1.8.4...
CVE-2025-54700 WordPress Makeaholic Theme <= 1.8.4 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove Makeaholic allows PHP Local File Inclusion. This issue affects Makeaholic: from n/a through 1.8.4...
WordPress Makeaholic Theme <= 1.8.4 is vulnerable to Local File Inclusion
Software Makeaholic Type Theme Vulnerable versions = 1.8.4 Fixed in 1.8.5 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-54700 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 3530b771c10e Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunit...