WordPress Builty <= 1.4.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Builty versions = 1.4.0...

WordPress Medicare Theme <= 2.1.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Medicare versions = 2.1.0...

WordPress Tours plugin <= 1.0.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Tours versions = 1.0.0...

WordPress Bimber - Viral Magazine WordPress Theme theme <= 9.2.5 - Local File Inclusion vulnerability

WordPress Bimber - Viral Magazine WordPress Theme theme = 9.2.5 - Local File Inclusion vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Bimber - Viral Magazine WordPress Theme versions = 9.2.5...

WordPress Kleo theme < 5.4.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Kleo versions 5.4.4...

WordPress wProject theme < 5.8.0 - Subscriber+ Privilege Escalation vulnerability

Subscriber+ Privilege Escalation vulnerability discovered by Dave Jong Patchstack in WordPress Theme wProject versions 5.8.0...

WordPress JNews Theme <= 11.6.16 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme JNews versions = 11.6.16...

WordPress Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue theme <= 4.2.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Bellevue versions = 4.2.2...

WordPress Grand Restaurant WordPress theme <= 7.0 - Arbitrary Options Deletion vulnerability

Arbitrary Options Deletion vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Grand Restaurant versions = 7.0...

WordPress Opstore theme <= 1.4.5 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Theme Opstore versions = 1.4.5...

WordPress Xews Lite plugin <= 1.0.9 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Theme Xews Lite versions = 1.0.9...

WordPress CWW Portfolio theme <= 1.3.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Theme CWW Portfolio versions = 1.3.1...

WordPress Grace Mag theme <= 1.1.5 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Theme Grace Mag versions = 1.1.5...

WordPress Grand Restaurant WordPress Theme <= 7.0 is vulnerable to Arbitrary Content Deletion

Software Grand Restaurant WordPress Type Theme Vulnerable versions = 7.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Arbitrary Content Deletion CVE CVE-2025-39352 Patch priority High CVSS severity High 8.2 Developer EPC PSID e23a34ecdc50 Credits Ananda Dhakal Patchstack...

WordPress Sirat theme <= 1.5.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Theme Sirat versions = 1.5.1...

WordPress Grand Restaurant WordPress theme <= 7.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Grand Restaurant versions = 7.0...

WordPress Dessau theme < 1.9 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Dessau versions 1.9...

WordPress Ivy School theme <= 1.6.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Ivy School versions = 1.6.0...

WordPress Foton theme <= 2.5.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Foton versions = 2.5.2...

WordPress Dør theme <= 2.4 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Bonds Patchstack Alliance in WordPress Theme Dør versions = 2.4...