Lucene search
K

5 matches found

Patchstack
Patchstack
added 2026/04/23 10:3 a.m.7 views

WordPress Roam theme <= 2.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Roam versions = 2.1...

9.8CVSS7.8AI score0.00409EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/22 4:52 p.m.4 views

CVE-2026-22407 WordPress Roam theme <= 2.1.1 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Roam roam allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Roam: from n/a through = 2.1.1...

3.8CVSS5.9AI score0.00201EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/22 4:52 p.m.19 views

CVE-2026-22407 WordPress Roam theme <= 2.1.1 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Roam roam allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Roam: from n/a through = 2.1.1...

3.8CVSS0.00201EPSS
Exploits0References1
CVE
CVE
added 2026/01/22 4:52 p.m.10 views

CVE-2026-22407

CVE-2026-22407 describes an IDOR-style Authorization Bypass in Mikado-Themes Roam (Roam) WordPress theme. Affected: Roam versions up to 2.1.1. Root cause: access control levels misconfigured, with a user-controlled key allowing bypass to restricted resources. Impact: authorisation bypass could ex...

3.8CVSS5.4AI score0.00201EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/02 1:15 p.m.7 views

WordPress Roam theme <= 2.1.1 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Roam versions = 2.1.1...

5.4CVSS7AI score0.00201EPSS
Exploits0Affected Software1
Rows per page
Query Builder