2105 matches found
CVE-2026-32436 WordPress VW Photography theme <= 1.3.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in vowelweb VW Photography vw-photography allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Photography: from n/a through = 1.3.8...
CVE-2026-32438
CVE-2026-32438 affects WordPress VW School Education theme ≤ 1.4.6 due to Missing Authorization and incorrectly configured access control security levels in vw-school-education. This prone configuration enables Broken Access Control, with impact limited to what the source documents state: unspeci...
CVE-2026-32388
CVE-2026-32388 concerns the WordPress GLB theme (linethemes) with versions <= 1.2.2. The issue is described as a Missing Authorization (Broken Access Control) vulnerability due to incorrectly configured access control security levels. The provided documents state affected scope as GLB: from n/...
CVE-2026-32388 WordPress GLB theme <= 1.2.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in linethemes GLB glb allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GLB: from n/a through = 1.2.2...
CVE-2026-32379
CVE-2026-32379 is a Missing Authorization vulnerability in the WordPress plugin/theme set for the raratheme Rara Academic (rara-academic). Affected versions are reported as from n/a through
CVE-2026-32381 WordPress App Landing Page theme <= 1.2.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme App Landing Page app-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects App Landing Page: from n/a through = 1.2.2...
CVE-2026-32382 WordPress Digital Download theme <= 1.1.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Digital Download digital-download allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Digital Download: from n/a through = 1.1.4...
CVE-2026-32377 WordPress Pranayama Yoga theme <= 1.2.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Pranayama Yoga pranayama-yoga allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pranayama Yoga: from n/a through = 1.2.2...
CVE-2026-32371 WordPress Elegant Pink theme <= 1.3.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Elegant Pink elegant-pink allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elegant Pink: from n/a through = 1.3.3...
CVE-2026-32371 WordPress Elegant Pink theme <= 1.3.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Elegant Pink elegant-pink allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elegant Pink: from n/a through = 1.3.3...
CVE-2026-32346
The CVE-2026-32346 entry concerns the WordPress Travel Agency theme (raratheme) <= 1.5.5 with a Missing Authorization vulnerability. The issue stems from incorrectly configured access control allowing bypass of authorization to access restricted functionality or data. Affected software: Travel...
CVE-2026-32347 WordPress Restaurant and Cafe theme <= 1.2.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Restaurant and Cafe restaurant-and-cafe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Restaurant and Cafe: from n/a through = 1.2.5...
CVE-2026-32340
CVE-2026-32340 affects the WordPress theme Business One Page (raratheme) up to version 1.3.2. The issue is a Missing Authorization/Broken Access Control vulnerability caused by incorrectly configured access control security levels in the Business One Page plugin, enabling unauthorized access due ...
CVE-2026-32340 WordPress Business One Page theme <= 1.3.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Business One Page business-one-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Business One Page: from n/a through = 1.3.2...
CVE-2026-32340 WordPress Business One Page theme <= 1.3.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Business One Page business-one-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Business One Page: from n/a through = 1.3.2...
CVE-2026-32335 WordPress The Conference theme <= 1.2.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme The Conference the-conference allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Conference: from n/a through = 1.2.5...
CVE-2026-32337
CVE-2026-32337 concerns a Missing Authorization vulnerability in the WordPress theme “Preschool and Kindergarten” by raratheme, affecting versions from n/a through
CVE-2026-32336
The CVE concerns the WordPress theme “Rara Business” by Raratheme, affected up to version 1.3.0, with a Missing Authorization (Broken Access Control) vulnerability. The issue arises from incorrectly configured access control security levels allowing Unauthorized access to privileged actions. The ...
CVE-2026-32337 WordPress Preschool and Kindergarten theme <= 1.2.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Preschool and Kindergarten preschool-and-kindergarten allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Preschool and Kindergarten: from n/a through = 1.2.5...
WordPress News Magazine X theme <= 1.2.50 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by John P in WordPress Theme News Magazine X versions = 1.2.50...