WordPress Rozario Theme <= 1.4 is vulnerable to PHP Object Injection

Software Rozario Type Theme Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-31927 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 49288bc6ac10 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...

CVE-2025-31065 WordPress Rozario <= 1.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in themeton Rozario allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Rozario: from n/a through 1.4...

CVE-2025-31065 WordPress Rozario <= 1.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in themeton Rozario allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Rozario: from n/a through 1.4...

CVE-2025-31065

CVE-2025-31065 affects Rozario WordPress theme versions up to 1.4 (themeton Rozario). Public docs describe a Missing Authorization / Broken Access Control vulnerability due to incorrectly configured access control levels. CVSS v3.1 base score 5.3 (Medium). No confirmed public fix version is provi...

WordPress Rozario theme <= 1.4 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Rozario versions = 1.4...

WordPress plugin Rozario 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...