Lucene search
K

264442 matches found

Patchstack
Patchstack
added 2026/05/26 8:4 a.m.11 views

WordPress Mission theme <= 1.22 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Mission versions = 1.22...

5.8AI score0.00435EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:56 a.m.10 views

WordPress Abelle theme <= 1.22 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Abelle versions = 1.22...

5.8AI score0.00435EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:56 a.m.9 views

WordPress Kelly Young theme <= 1.1.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Kelly Young versions = 1.1.0...

5.8AI score0.00348EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:56 a.m.8 views

WordPress SweetDate Core plugin < 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin SweetDate Core versions 1.1.5...

5.8AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:55 a.m.9 views

WordPress Car Zone theme <= 3.7 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Car Zone versions = 3.7...

5.8AI score0.00533EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:55 a.m.12 views

WordPress Wanium theme <= 1.9.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Wanium versions = 1.9.8...

5.8AI score0.00435EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:53 a.m.7 views

WordPress Entrepreneur - Booking for Small Businesses WordPress Theme theme <= 3.1.3 - PHP Object Injection vulnerability

WordPress Entrepreneur - Booking for Small Businesses WordPress Theme theme = 3.1.3 - PHP Object Injection vulnerability discovered by 0xd4rk5id3 in WordPress Theme Entrepreneur - Booking for Small Businesses WordPress Theme versions = 3.1.3...

5.8AI score0.00482EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:53 a.m.6 views

WordPress JobCareer theme <= 7.3 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Denver Jackson in WordPress Theme JobCareer versions = 7.3...

5.8AI score0.0046EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:51 a.m.8 views

WordPress Plumbing theme <= 1.6 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Plumbing versions = 1.6...

5.8AI score0.00386EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:51 a.m.10 views

WordPress SeaFood Company theme <= 1.4 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme SeaFood Company versions = 1.4...

5.8AI score0.00525EPSS
Exploits0Affected Software1
CVE
CVE
added 2026/05/26 7:51 a.m.23 views

CVE-2026-39642

CVE-2026-39642 concerns the WordPress Nyla theme (versions &lt;= 1.7). The connected documents indicate an Arbitrary Shortcode Execution vulnerability tied to Nyla, with the underlying issue described as improper handling of script-related HTML/shortcodes that enables code execution in affected i...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/26 7:51 a.m.47 views

CVE-2026-39642 WordPress Nyla theme <= 1.7 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in SpabRice Nyla allows Code Injection. This issue affects Nyla: from n/a through 1.7...

5.3CVSS0.00255EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/26 7:51 a.m.10 views

CVE-2026-39642 WordPress Nyla theme <= 1.7 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in SpabRice Nyla allows Code Injection. This issue affects Nyla: from n/a through 1.7...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/05/26 7:51 a.m.7 views

WordPress Reisen theme <= 1.4.1 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Reisen versions = 1.4.1...

5.8AI score0.00386EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:51 a.m.10 views

WordPress Hot Coffee theme <= 1.7 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Hot Coffee versions = 1.7...

5.8AI score0.00525EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:50 a.m.11 views

WordPress Qreatix theme <= 1.9.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Qreatix versions = 1.9.4...

5.8AI score0.00237EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:50 a.m.8 views

WordPress Felan Framework plugin <= 1.1.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Felan Framework versions = 1.1.3...

7.1CVSS5.8AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/26 7:50 a.m.12 views

WordPress Nyla theme <= 1.7 - Arbitrary Shortcode Execution vulnerability

Arbitrary Shortcode Execution vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Nyla versions = 1.7...

5.3CVSS5.8AI score0.00255EPSS
Exploits0Affected Software1
CVE
CVE
added 2026/05/26 7:49 a.m.24 views

CVE-2026-39661

CVE-2026-39661 affects the WordPress SW Core plugin (versions ≤ 1.7.18). The issue is a PHP Local File Inclusion due to improper control of the filename used in include/require (the vulnerability aligns with a PHP Remote File Inclusion pattern). The CVSS metrics indicate NETWORK attack vector, HI...

7.5CVSS5.8AI score0.00418EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/26 7:49 a.m.44 views

CVE-2026-39661 WordPress SW Core plugin <= 1.7.18 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Magentech SW Core allows PHP Local File Inclusion. This issue affects SW Core: from n/a through 1.7.18...

7.5CVSS0.00418EPSS
Exploits0References1
Rows per page
Query Builder