3725 matches found
WordPress Goodlayers Hostel Plugin <= 3.1.2 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by Bonds in WordPress Plugin Goodlayers Hostel versions = 3.1.2...
WordPress Crafts & Arts Theme <= 2.5 is vulnerable to PHP Object Injection
Software Crafts & Arts Type Theme Vulnerable versions = 2.5 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-31924 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID c2b3d2de486e Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...
WordPress Avantage Theme <= 2.4.6 is vulnerable to PHP Object Injection
Software Avantage Type Theme Vulnerable versions = 2.4.6 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-39495 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 25b40b813078 Credits Bonds Required privilege Unauthenticated Published...
WordPress Medicare Theme <= 2.1.0 is vulnerable to PHP Object Injection
Software Medicare Type Theme Vulnerable versions = 2.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-39499 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 8ac56173cd64 Credits Bonds Required privilege Unauthenticated Published...
WordPress Grand Tour | Travel Agency WordPress Theme <= 5.5.1 is vulnerable to PHP Object Injection
Software Grand Tour | Travel Agency WordPress Type Theme Vulnerable versions = 5.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-39485 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 2dd075a80458 Credits Bonds Required privile...
CVE-2025-32926 WordPress Grand Restaurant WordPress theme <= 7.0 - Path Traversal to PHP Object Injection vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Path Traversal.This issue affects Grand Restaurant: from n/a through = 7.0...
CVE-2025-32926
CVE-2025-32926 affects ThemeGoods Grand Restaurant WordPress theme
CVE-2025-32926 WordPress Grand Restaurant WordPress theme <= 7.0 - Path Traversal to PHP Object Injection vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Path Traversal.This issue affects Grand Restaurant: from n/a through = 7.0...
CVE-2025-32927
CVE-2025-32927 maps to a Deserialization of Untrusted Data vulnerability in the WordPress FoodBakery plugin (FoodBakery)
CVE-2025-32927 WordPress FoodBakery plugin <= 3.3 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBakery wp-foodbakery allows Object Injection.This issue affects FoodBakery: from n/a through = 3.3...
CVE-2025-32927 WordPress FoodBakery plugin <= 3.3 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBakery wp-foodbakery allows Object Injection.This issue affects FoodBakery: from n/a through = 3.3...
CVE-2025-32928 WordPress Altair theme <= 5.2.2 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeGoods Altair altair allows Object Injection.This issue affects Altair: from n/a through = 5.2.2...
CVE-2025-32928 WordPress Altair theme <= 5.2.2 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeGoods Altair allows Object Injection.This issue affects Altair: from n/a through 5.2.2...
CVE-2025-39349 WordPress CiyaShop theme <= 4.18.0 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Potenzaglobalsolutions CiyaShop ciyashop allows Object Injection.This issue affects CiyaShop: from n/a through = 4.18.0...
CVE-2025-39349 WordPress CiyaShop theme <= 4.18.0 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Potenzaglobalsolutions CiyaShop allows Object Injection.This issue affects CiyaShop: from n/a through 4.18.0...
CVE-2025-39354 WordPress Grand Conference theme <= 5.3 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Conference grandconference allows Object Injection.This issue affects Grand Conference: from n/a through = 5.3...
CVE-2025-39354 WordPress Grand Conference theme <= 5.2 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Conference allows Object Injection.This issue affects Grand Conference: from n/a through 5.2...
CVE-2025-39356 WordPress Foodbakery Sticky Cart plugin <= 3.2 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Chimpstudio Foodbakery Sticky Cart foodbakery-sticky-cart allows Object Injection.This issue affects Foodbakery Sticky Cart: from n/a through = 3.2...
CVE-2025-39356 WordPress Foodbakery Sticky Cart plugin <= 3.2 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Chimpstudio Foodbakery Sticky Cart foodbakery-sticky-cart allows Object Injection.This issue affects Foodbakery Sticky Cart: from n/a through = 3.2...
CVE-2025-39410 WordPress Smart Sections Theme Builder - WPBakery Page Builder Addon plugin <= 1.7.8 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in themegusta Smart Sections Theme Builder - WPBakery Page Builder Addon.This issue affects Smart Sections Theme Builder - WPBakery Page Builder Addon: from n/a through 1.7.8...