3 matches found
EUVD-2025-14369
Malicious code in bioql PyPI...
CVE-2025-4339
The TheGem theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxApi function in all versions up to, and including, 5.10.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary...
PT-2025-20836 · WordPress · Thegem
Name of the Vulnerable Software and Affected Versions: TheGem theme for WordPress versions up to and including 5.10.3 Description: The issue concerns unauthorized modification of data due to a missing capability check in the ajaxApi function. This allows authenticated attackers with...