6 matches found
CVE-2026-39529
Unauthenticated PHP Object Injection in Elementra = 1.0.9 versions...
CVE-2026-39529
The CVE identifies an unauthenticated PHP Object Injection in WordPress Elementra theme
CVE-2026-39529 WordPress Elementra theme <= 1.0.9 - PHP Object Injection vulnerability
Unauthenticated PHP Object Injection in Elementra = 1.0.9 versions...
WordPress Elementra theme <= 1.0.9 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by Bonds in WordPress Theme Elementra versions = 1.0.9...
WordPress Elementra theme <= 1.0.7 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Elementra versions = 1.0.7...
WordPress Elementra Theme <= 1.0.5 is vulnerable to Local File Inclusion
Software Elementra Type Theme Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-26592 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID ec9dfc446593 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...