2 matches found
CVE-2026-32482
CVE-2026-32482 affects WordPress Ona theme versions prior to 1.24. The issue is Unrestricted Upload of File with Dangerous Type, allowing an attacker to upload a web shell to the web server via the Ona plugin/theme. Relevant sources report a high-severity CVSS v3.1 base score of 9.9 (AV:N/AC:L/PR...
WordPress Ona theme < 1.24 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by Phat RiO in WordPress Theme Ona versions 1.24...