Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2026/03/13 11:42 a.m.3 views

CVE-2026-32434 WordPress VW Fitness theme <= 4.3.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...

5.3CVSS5.8AI score0.00233EPSS
Exploits0References1
CVE
CVE
added 2026/03/05 5:53 a.m.5 views

CVE-2026-27342

CVE-2026-27342 : Local File Inclusion in Mikado-Themes TopFit - Fitness and Gym WordPress Theme (TopFit) up to and including 1.9. The issue is caused by improper control of filenames for include/require statements in a PHP program, enabling PHP Local File Inclusion. Connected sources (Red Hat CVE...

8.1CVSS5.9AI score0.00415EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/03/02 11:38 a.m.4 views

WordPress VW Fitness theme <= 4.3.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Theme VW Fitness versions = 4.3.4...

5.3CVSS5.8AI score0.00233EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:26 p.m.5 views

WordPress TopFit - Fitness and Gym WordPress Theme theme <= 1.9 - Local File Inclusion vulnerability

WordPress TopFit - Fitness and Gym WordPress Theme theme = 1.9 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme TopFit - Fitness and Gym WordPress Theme versions = 1.9...

8.1CVSS5.9AI score0.00415EPSS
Exploits0Affected Software1
CVE
CVE
added 2026/02/19 8:27 a.m.7 views

CVE-2026-25394

CVE-2026-25394 describes a Missing Authorization / Broken Access Control in the WordPress Fitness FSE theme (versions ≤ 1.0.6). The vulnerability arises from incorrectly configured access control security levels, and affects Fitness FSE from n/a to 1.0.6. The connected sources (NVD, Red Hat, CVE ...

4.3CVSS5.4AI score0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/19 8:27 a.m.1 views

CVE-2026-25394 WordPress Fitness FSE theme <= 1.0.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in sparklewpthemes Fitness FSE fitness-fse allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fitness FSE: from n/a through = 1.0.6...

4.3CVSS5.5AI score0.00185EPSS
Exploits0References1
Rows per page
Query Builder