CVE-2026-27051 WordPress Golo theme <= 1.7.0 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in uxper Golo golo allows Privilege Escalation.This issue affects Golo: from n/a through = 1.7.0...

CVE-2026-27051

CVE-2026-27051: A Privilege Escalation via Incorrect Privilege Assignment in the WordPress theme Golo (uxper)

CVE-2026-27051 WordPress Golo theme <= 1.7.0 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in uxper Golo golo allows Privilege Escalation.This issue affects Golo: from n/a through = 1.7.0...

CVE-2026-23973 WordPress Golo theme < 1.7.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uxper Golo golo allows Reflected XSS.This issue affects Golo: from n/a through 1.7.5...

CVE-2026-23973

CVE-2026-23973 affects uxper Golo WordPress theme versions prior to 1.7.5. The issue is a Reflected XSS caused by improper neutralization of input during web page generation. Several connected sources corroborate the vulnerability in Golo

CVE-2026-23973 WordPress Golo theme < 1.7.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uxper Golo golo allows Reflected XSS.This issue affects Golo: from n/a through 1.7.5...

WordPress Golo theme < 1.7.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Golo versions 1.7.5...

WordPress Golo theme <= 1.7.0 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Golo versions = 1.7.0...

WordPress Golo theme < 1.7.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Golo versions 1.7.5...

WordPress Golo theme < 1.7.5 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Golo versions 1.7.5...

CVE-2026-23974

CVE-2026-23974 describes a Missing Authorization vulnerability in WordPress theme Golo (Golo) where access control levels are improperly configured. Affected versions are Golo up to &lt; 1.7.5. Public disclosures from Patchstack and CVE listings confirm Broken Access Control due to insufficient a...

CVE-2026-23975 WordPress Golo theme < 1.7.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Golo golo allows PHP Local File Inclusion.This issue affects Golo: from n/a through 1.7.5...

CVE-2026-23974 WordPress Golo theme < 1.7.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in uxper Golo golo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Golo: from n/a through 1.7.5...

CVE-2026-23974 WordPress Golo theme < 1.7.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in uxper Golo golo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Golo: from n/a through 1.7.5...

CVE-2025-54725 WordPress Golo Theme <= 1.7.0 - Broken Authentication Vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in uxper Golo allows Authentication Abuse. This issue affects Golo: from n/a through 1.7.0...

CVE-2025-54725

CVE-2025-54725 affects WordPress theme/plugin Golo (WordPress Golo Theme) up to version 1.7.0. The issue is a broken/authentication bypass allowing authentication abuse via an alternate path or channel in uxper Golo, enabling unauthenticated users to bypass login controls. The CVSS v3.1 base scor...

CVE-2025-54725 WordPress Golo Theme <= 1.7.0 - Broken Authentication Vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in uxper Golo golo allows Authentication Abuse.This issue affects Golo: from n/a through = 1.7.0...

CVE-2025-54724 WordPress Golo Theme <= 1.7.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uxper Golo golo allows Reflected XSS.This issue affects Golo: from n/a through = 1.7.1...

CVE-2025-54724 WordPress Golo Theme <= 1.7.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uxper Golo allows Reflected XSS. This issue affects Golo: from n/a through 1.7.1...

CVE-2025-54724

The CVE-2025-54724 entry affects the WordPress Golo theme (Golo: