Lucene search
+L

40 matches found

nvd
nvd
added 2026/07/02 12:17 p.m.8 views

CVE-2026-57690

Unauthenticated Cross Site Request Forgery CSRF in Werkstatt = 4.7.2 versions...

4.3CVSS0.00104EPSS
Exploits0References1
nvd
nvd
added 2026/07/02 12:17 p.m.5 views

CVE-2026-57689

Subscriber Broken Access Control in Werkstatt = 4.7.2 versions...

4.3CVSS0.00222EPSS
Exploits0References1
nvd
nvd
added 2026/07/02 12:17 p.m.8 views

CVE-2026-27414

Contributor PHP Object Injection in Werkstatt = 4.8.3 versions...

8.8CVSS0.00288EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.21 views

CVE-2026-57690

The CVE-2026-57690 entry documents an unauthenticated Cross Site Request Forgery (CSRF) in the WordPress Werkstatt theme versions ≤ 4.7.2. The vulnerability affects the Werkstatt theme (WordPress plugin/theme) and is described as CSRF without details on exploit vectors beyond unauthenticated acce...

4.3CVSS5.8AI score0.00104EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/07/02 11:15 a.m.8 views

CVE-2026-57690

Unauthenticated Cross Site Request Forgery CSRF in Werkstatt = 4.7.2 versions...

4.3CVSS5.8AI score0.00104EPSS
Exploits0References2
cvelist
cvelist
added 2026/07/02 11:15 a.m.36 views

CVE-2026-57690 WordPress Werkstatt theme <= 4.7.2 - Cross Site Request Forgery (CSRF) vulnerability

Unauthenticated Cross Site Request Forgery CSRF in Werkstatt = 4.7.2 versions...

4.3CVSS0.00104EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.15 views

CVE-2026-57689

The CVE-2026-57689 entry concerns the WordPress Werkstatt theme (versions up to 4.7.2) with a Broken Access Control flaw. Affected component: Werkstatt WordPress theme; root cause: broken access control mechanisms in version &lt;= 4.7.2. Impact: unauthorized access to restricted functionality, as...

4.3CVSS5.8AI score0.00222EPSS
Exploits0References1
cvelist
cvelist
added 2026/07/02 11:15 a.m.33 views

CVE-2026-57689 WordPress Werkstatt theme <= 4.7.2 - Broken Access Control vulnerability

Subscriber Broken Access Control in Werkstatt = 4.7.2 versions...

4.3CVSS0.00222EPSS
Exploits0References1
cvelist
cvelist
added 2026/07/02 11:14 a.m.34 views

CVE-2026-27414 WordPress Werkstatt theme <= 4.8.3 - PHP Object Injection vulnerability

Contributor PHP Object Injection in Werkstatt = 4.8.3 versions...

8.8CVSS0.00288EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:14 a.m.20 views

CVE-2026-27414

CVE-2026-27414 details (provided): WordPress Werkstatt theme

8.8CVSS5.8AI score0.00288EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/07/02 12:0 a.m.8 views

PT-2026-55031

Unauthenticated Cross Site Request Forgery CSRF in Werkstatt = 4.7.2 versions...

4.3CVSS5.8AI score0.00104EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/07/02 12:0 a.m.12 views

PT-2026-54976

Contributor PHP Object Injection in Werkstatt = 4.8.3 versions...

8.8CVSS5.8AI score0.00288EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/07/02 12:0 a.m.9 views

PT-2026-55030

Subscriber Broken Access Control in Werkstatt = 4.7.2 versions...

4.3CVSS5.8AI score0.00222EPSS
Exploits0References3
patchstack
patchstack
added 2026/06/30 1:46 p.m.5 views

WordPress Werkstatt theme <= 4.8.3 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Werkstatt versions = 4.8.3...

8.8CVSS5.8AI score0.00288EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2026/06/29 12:26 p.m.9 views

WordPress Werkstatt theme <= 4.7.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Werkstatt versions = 4.7.2...

4.3CVSS5.8AI score0.00104EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2026/06/29 12:19 p.m.10 views

WordPress Werkstatt theme <= 4.7.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Werkstatt versions = 4.7.2...

4.3CVSS5.8AI score0.00222EPSS
Exploits0Affected Software1
redhatcve
redhatcve
added 2026/01/23 9:17 p.m.7 views

CVE-2025-69314

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes Werkstatt werkstatt allows PHP Local File Inclusion.This issue affects Werkstatt: from n/a through 4.8.3...

8.1CVSS5.5AI score0.00403EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/23 9:16 p.m.8 views

CVE-2025-63017

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS5.5AI score0.00515EPSS
Exploits0References1
nvd
nvd
added 2026/01/22 5:16 p.m.5 views

CVE-2025-69314

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes Werkstatt werkstatt allows PHP Local File Inclusion.This issue affects Werkstatt: from n/a through 4.8.3...

8.1CVSS0.00403EPSS
Exploits0References1
nvd
nvd
added 2026/01/22 5:15 p.m.7 views

CVE-2025-63017

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS0.00515EPSS
Exploits0References1
Rows per page
Query Builder