Lucene search
K

23 matches found

Patchstack
Patchstack
added 3 days ago4 views

WordPress Pearl - Corporate Business theme <= 3.4.10 - Local File Inclusion vulnerability

WordPress Pearl - Corporate Business theme = 3.4.10 - Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Pearl - Corporate Business versions = 3.4.10...

8.1CVSS5.8AI score
Exploits0Affected Software1
Cvelist
Cvelist
added 2026/06/17 12:47 p.m.27 views

CVE-2025-69130 WordPress Entrepreneur - Booking for Small Businesses WordPress Theme theme <= 3.1.3 - PHP Object Injection vulnerability

Subscriber PHP Object Injection in Entrepreneur - Booking for Small Businesses WordPress Theme = 3.1.3 versions...

8.8CVSS0.00482EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 11:41 a.m.24 views

CVE-2026-32336 WordPress Rara Business theme <= 1.3.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in raratheme Rara Business rara-business allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rara Business: from n/a through = 1.3.0...

5.3CVSS0.00214EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 11:41 a.m.7 views

CVE-2026-32336

The CVE concerns the WordPress theme “Rara Business” by Raratheme, affected up to version 1.3.0, with a Missing Authorization (Broken Access Control) vulnerability. The issue arises from incorrectly configured access control security levels allowing Unauthorized access to privileged actions. The ...

5.3CVSS5.8AI score0.00214EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-1807

Malware in sbrugna...

2.1CVSS6.4AI score0.01089EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/07/18 11:54 a.m.9 views

CVE-2025-31427

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in designthemes Invico - WordPress Consulting Business Theme invico allows Reflected XSS.This issue affects Invico - WordPress Consulting Business Theme: from n/a through = 1.9...

7.1CVSS5.9AI score0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/09 3:56 p.m.4 views

CVE-2025-31396 WordPress FLAP - Business WordPress Theme <= 1.5 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in themeton FLAP - Business WordPress Theme allows Object Injection. This issue affects FLAP - Business WordPress Theme: from n/a through 1.5...

9.8CVSS9.7AI score0.00503EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/09 12:0 a.m.5 views

WordPress and WordPress plugin code issues vulnerabilities

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

9.8CVSS7.4AI score0.00503EPSS
Exploits0References2
NVD
NVD
added 2025/05/23 1:15 p.m.8 views

CVE-2025-31069

Deserialization of Untrusted Data vulnerability in themeton HotStar – Multi-Purpose Business Theme allows Object Injection. This issue affects HotStar – Multi-Purpose Business Theme: from n/a through 1.4...

9.8CVSS0.00503EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/23 12:44 p.m.6 views

CVE-2025-31069 WordPress HotStar – Multi-Purpose Business Theme <= 1.4 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in themeton HotStar – Multi-Purpose Business Theme allows Object Injection. This issue affects HotStar – Multi-Purpose Business Theme: from n/a through 1.4...

9.8CVSS9.5AI score0.00503EPSS
Exploits0References1
CVE
CVE
added 2025/05/23 12:44 p.m.41 views

CVE-2025-31069

CVE-2025-31069 : Deserialization of Untrusted Data in the WordPress theme HotStar – Multi-Purpose Business Theme (versions ≤1.4) enables unauthenticated PHP Object Injection. Affected: HotStar theme; root cause: deserializing untrusted data; impact: high confidentiality, integrity, and availabili...

9.8CVSS8.6AI score0.00503EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/19 1:41 p.m.3 views

WordPress The Business theme <= 1.6.1 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme The Business versions = 1.6.1...

9.8CVSS7.2AI score0.00503EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/16 3:45 p.m.7 views

CVE-2025-31071 WordPress HotStar – Multi-Purpose Business Theme <= 1.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in themeton HotStar – Multi-Purpose Business Theme allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects HotStar – Multi-Purpose Business Theme: from n/a through 1.4...

5.3CVSS7.1AI score0.00265EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/16 1:6 p.m.3 views

WordPress The Business theme <= 1.6.1 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme The Business versions = 1.6.1...

5.3CVSS6.9AI score0.00273EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/16 12:0 a.m.6 views

WordPress HotStar – Multi-Purpose Business Theme Theme <= 1.4 is vulnerable to Broken Access Control

Software HotStar – Multi-Purpose Business Theme Type Theme Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A5: Security Misconfiguration Classification Broken Access Control CVE CVE-2025-31071 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID bb3eaed13631 Credits Tran...

5.3CVSS6.5AI score0.00265EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/02 12:1 p.m.7 views

CVE-2024-37937 WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Rara Theme Rara Business allows Cross Site Request Forgery.This issue affects Rara Business: from n/a through 1.2.5...

4.3CVSS7AI score0.00216EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 12:1 p.m.13 views

CVE-2024-37937 WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in raratheme Rara Business rara-business allows Cross Site Request Forgery.This issue affects Rara Business: from n/a through = 1.2.5...

4.3CVSS0.00216EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/04 12:7 p.m.4 views

WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Theme Rara Business versions = 1.2.5...

8.8CVSS7AI score0.00216EPSS
Exploits0Affected Software1
NVD
NVD
added 2013/03/27 9:55 p.m.16 views

CVE-2013-1783

Cross-site scripting XSS vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...

2.1CVSS5.3AI score0.01089EPSS
Exploits0References8
Prion
Prion
added 2013/03/27 9:55 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...

2.1CVSS5.6AI score0.01089EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder