Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/25 1:19 p.m.7 views

CVE-2025-39485

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour grandtour allows Object Injection.This issue affects Grand Tour: from n/a through = 5.6...

9.8CVSS7.2AI score0.00503EPSS
Exploits0References1
nvd
nvd
added 2025/05/23 1:15 p.m.7 views

CVE-2025-39485

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour grandtour allows Object Injection.This issue affects Grand Tour: from n/a through = 5.6...

9.8CVSS0.00503EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/05/23 12:43 p.m.4 views

CVE-2025-39485 WordPress GrandTour Theme <= 5.5.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour | Travel Agency WordPress allows Object Injection. This issue affects Grand Tour | Travel Agency WordPress: from n/a through 5.5.1...

9.8CVSS9.6AI score0.00503EPSS
Exploits0References1
cve
cve
added 2025/05/23 12:43 p.m.44 views

CVE-2025-39485

CVE-2025-39485 concerns the Grand Tour | Travel Agency WordPress theme deserializing untrusted data, enabling PHP object injection in versions up to 5.5.1. Public sources confirm a WordPress theme vulnerability with a critical CVSS 9.8, affecting the Grand Tour theme and labeled as unpatched in t...

9.8CVSS7.2AI score0.00503EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2025/05/20 12:0 a.m.6 views

WordPress Grand Tour | Travel Agency WordPress Theme <= 5.5.1 is vulnerable to PHP Object Injection

Software Grand Tour | Travel Agency WordPress Type Theme Vulnerable versions = 5.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-39485 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 2dd075a80458 Credits Bonds Required privile...

9.8CVSS6.8AI score0.00503EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder