by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors CVE-2026-22383 is a Medium-severity vulnerability (CVSS 4.3; CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N) affecting the PawFriends – Pet Shop and Veterinary WordPress Theme (slug: pawfriends) in all versions up to and including 1.3. The issue can...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors Grand Restaurant (WordPress theme slug: grandrestaurant) has a High-severity vulnerability (CVE-2026-23542, CVSS 8.1) affecting versions up to and including 7.0.10. The issue can be triggered without authentication, meaning an external attacker can...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors Valenti (WordPress theme, slug: valenti) versions <= 5.6.3.5 are affected by CVE-2026-23544, a High-severity issue (CVSS 7.5, vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H). This vulnerability can be triggered over the network by an attacker...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors CVE-2026-24607 affects the Travel Monster WordPress theme (slug: travel-monster) in versions up to and including 1.3.3. It is rated Medium severity with a CVSS 3.1 score of 5.3 (Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N). Because the weakness...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors Blix (slug: blix) theme families Blix <= 0.9.1, Blixed <= 1.0, and BlixKrieg <= 2.2 are affected by a Medium-severity Reflected Cross-Site Scripting (XSS) issue (CVSS 6.1, CVE-2007-4014: https://www.cve.org/CVERecord?id=CVE-2007-4014). The...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors CVE-2025-32285 is a medium-severity reflected cross-site scripting (XSS) issue (CVSS 6.1; CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N) affecting the Butcher – Meat Shop WooCommerce WordPress Theme (slug: butcher) in versions before 2.54. Because...
Recent Comments