Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18985 matches found

Cvelist
Cvelistadded 6 days ago26 views

CVE-2025-69127 WordPress Plumbing theme <= 1.6 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS0.00386EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago27 views

CVE-2025-69130 WordPress Entrepreneur - Booking for Small Businesses WordPress Theme theme <= 3.1.3 - PHP Object Injection vulnerability

Subscriber PHP Object Injection in Entrepreneur - Booking for Small Businesses WordPress Theme = 3.1.3 versions...

8.8CVSS0.00482EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago26 views

CVE-2025-69120 WordPress Dazzle theme <= 1.0.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Dazzle = 1.0.0 versions...

8.1CVSS0.00435EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago27 views

CVE-2025-69115 WordPress LuxMed | Medicine & Healthcare Doctor WordPress Theme theme <= 1.2.2 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in LuxMed | Medicine & Healthcare Doctor WordPress Theme = 1.2.2 versions...

8.1CVSS0.00348EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago16 views

CVE-2025-69111 WordPress Reisen theme <= 1.4.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Reisen = 1.4.1 versions...

9.8CVSS0.00386EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago26 views

CVE-2025-69106 WordPress Imba theme <= 1.5.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Imba = 1.5.0 versions...

8.1CVSS0.00435EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago14 views

CVE-2025-68524 WordPress Avante theme < 3.0.5 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Avante 3.0.5 versions...

7.1CVSS0.0023EPSS
Exploits0References1
CVE
CVEadded 6 days ago18 views

CVE-2024-37496

CVE-2024-37496 concerns the WordPress Metro Magazine theme (

4.3CVSS5.2AI score0.00208EPSS
Exploits0References1
CVE
CVEadded 6 days ago24 views

CVE-2025-31013

Technical details for CVE-2025-31013 are not provided in the supplied documents; no affected products, vectors, or remediation details are disclosed here. Monitor for official updates.

7.1CVSS8.3AI score0.00146EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago29 views

CVE-2024-34810 WordPress Skyline WP theme <= 1.0.10 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site request forgery CSRF vulnerability in Extend Themes Skyline WP allows Cross Site Request Forgery. This issue affects Skyline WP: from n/a through 1.0.10...

4.3CVSS0.00117EPSS
Exploits0References1
CVE
CVEadded 6 days ago10 views

CVE-2026-42380

CVE-2026-42380 covers the WordPress AI Lab theme prior to version 5.4.2, which is vulnerable to unauthenticated PHP Object Injection. The Patchstack entry and CVE records indicate the vulnerability is fixed in 5.4.2. Impact is high (remote, unauthenticated) per the CVSS vector: Network, None priv...

9.8CVSS5.3AI score0.0051EPSS
Exploits0References1
CVE
CVEadded 6 days ago10 views

CVE-2026-41557

CVE-2026-41557 concerns WordPress theme Kapee prior to version 1.7.1, where an unauthenticated Cross Site Scripting (XSS) vulnerability exists in the theme. The Patchstack entry attributes a CVSS v3.1 base score of 7.1 (HIGH) with NETWORK attack vector, LOW confidentiality/integrity/availability ...

7.1CVSS5.1AI score0.0023EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago25 views

CVE-2026-41557 WordPress Kapee theme < 1.7.1 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Kapee 1.7.1 versions...

7.1CVSS0.0023EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago24 views

CVE-2026-40753 WordPress EasyMeals theme <= 1.5.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in EasyMeals = 1.5.1 versions...

8.1CVSS0.00308EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago26 views

CVE-2026-40749 WordPress Charity Zone theme <= 1.1.1 - Arbitrary File Upload vulnerability

Subscriber Arbitrary File Upload in Charity Zone = 1.1.1 versions...

9.9CVSS0.00434EPSS
Exploits0References1
CVE
CVEadded 6 days ago10 views

CVE-2026-40749

The CVE covers the WordPress Charity Zone theme (versions &lt;= 1.1.1) with a Subscriber Arbitrary File Upload vulnerability. The underlying issue enables arbitrary files to be uploaded due to insecure handling in Charity Zone

9.9CVSS5.2AI score0.00434EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago25 views

CVE-2026-40748 WordPress Kids Gift Shop theme <= 0.5.4 - Arbitrary File Upload vulnerability

Subscriber Arbitrary File Upload in Kids Gift Shop = 0.5.4 versions...

9.9CVSS0.00434EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago25 views

CVE-2026-40746 WordPress Restaurant Zone theme <= 0.7.8 - Arbitrary File Upload vulnerability

Subscriber Arbitrary File Upload in Restaurant Zone = 0.7.8 versions...

9.9CVSS0.00434EPSS
Exploits0References1
CVE
CVEadded 6 days ago8 views

CVE-2026-40746

The CVE-2026-40746 entry concerns WordPress Theme Restaurant Zone (versions

9.9CVSS5.2AI score0.00434EPSS
Exploits0References1
Cvelist
Cvelistadded 6 days ago25 views

CVE-2026-40735 WordPress Reina theme <= 2.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Reina = 2.1 versions...

8.1CVSS0.00395EPSS
Exploits0References1
Rows per page
Query Builder