CVE-2023-51501

CVE-2023-51501 affects Undsgn Uncode (WordPress theme) — Uncode Core

PT-2023-31840 · WordPress · Uncode

Name of the Vulnerable Software and Affected Versions: Uncode - Creative & WooCommerce WordPress Theme versions 2.8.6 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This...

CVE-2023-49826

Deserialization of Untrusted Data vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

CVE-2023-49826

Deserialization of Untrusted Data vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

Deserialization of untrusted data

Deserialization of Untrusted Data vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

CVE-2023-49826

CVE-2023-49826 corresponds to a deserialization of untrusted data vulnerability in the Soledad WordPress theme (versions up to 8.4.1). Root cause: PHP Object Injection via untrusted data deserialization. Impact: unauthenticated remote code execution/total compromise potential on affected sites. A...

CVE-2023-49752

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spoon themes Adifier - Classified Ads WordPress Theme.This issue affects Adifier - Classified Ads WordPress Theme: from n/a before 3.1.4...

CVE-2023-49752

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spoon themes Adifier - Classified Ads WordPress Theme.This issue affects Adifier - Classified Ads WordPress Theme: from n/a before 3.1.4...

CVE-2023-29432

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Favethemes Houzez - Real Estate WordPress Theme.This issue affects Houzez - Real Estate WordPress Theme: from n/a before 2.8.3...

CVE-2023-29432

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Favethemes Houzez - Real Estate WordPress Theme.This issue affects Houzez - Real Estate WordPress Theme: from n/a before 2.8.3...

CVE-2023-49752

CVE-2023-49752 pertains to the Adifier System WordPress Theme (Adifier – Classified Ads WordPress Theme) with an SQL Injection vulnerability in versions prior to 3.1.4. The root cause is improper handling/escaping of user input in SQL commands, enabling unauthenticated attackers to manipulate que...

CVE-2023-29432

CVE-2023-29432 is a SQL Injection vulnerability in Favethemes Houzez - Real Estate WordPress Theme, affecting versions prior to 2.8.3. The root cause is improper neutralization of special elements used in SQL commands. Public records (NVD, Patchstack) assign a high/critical impact (CVSS v3.1 base...

CVE-2023-49825

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

CVE-2023-49825

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

PT-2023-22257 · WordPress · Houzez

Name of the Vulnerable Software and Affected Versions: Houzez - Real Estate WordPress Theme versions prior to 2.8.3 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation...

PT-2023-31328 · Adifier · Adifier

Name of the Vulnerable Software and Affected Versions: Adifier - Classified Ads WordPress Theme versions prior to 3.1.4 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential...

CVE-2023-49750

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spoonthemes Couponis - Affiliate & Submitting Coupons WordPress Theme.This issue affects Couponis - Affiliate & Submitting Coupons WordPress Theme: from n/a before 2.2...

CVE-2023-49750

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spoonthemes Couponis - Affiliate & Submitting Coupons WordPress Theme.This issue affects Couponis - Affiliate & Submitting Coupons WordPress Theme: from n/a before 2.2...

CVE-2023-49750

CVE-2023-49750 concerns the Couponis Demo WordPress vulnerability where an improper neutralization of input enables an SQL Injection. The issue affects the Couponis Demo/ Spoonthemes Couponis – Affiliate & Submitting Coupons Theme (WordPress) in versions before 2.2. Public sources (PATCHSTACK) ma...