by Ivan Sorkin | Feb 17, 2026 | Themes
Attack Vectors CVE-2025-12074 affects the Context Blog WordPress theme (slug: context-blog) in versions 1.2.5 and earlier, and is rated Medium severity (CVSS 5.3). The issue can be triggered by unauthenticated visitors over the network, meaning an attacker does not...
by Ivan Sorkin | Feb 17, 2026 | Themes
Attack Vectors CVE-2025-69385 affects the Cartify – WooCommerce Gutenberg WordPress theme (slug: cartify) in versions 1.3 and below. The severity is Medium (CVSS 4.3), and the attack can occur remotely over the network without requiring a victim to click...
by Ivan Sorkin | Feb 17, 2026 | Themes
Attack Vectors CVE-2025-67995 affects the PatioTime – Restaurant WordPress Theme (slug: patiotime) in versions below 2.1 and is rated High severity (CVSS 8.1). The issue is an unauthenticated PHP Object Injection risk triggered when untrusted input is...
by Ivan Sorkin | Feb 17, 2026 | Themes
Attack Vectors Travelicious – Tour Operator WordPress Theme (slug: travelicious) versions earlier than 1.6.7 are affected by CVE-2025-67997, a High severity issue (CVSS 8.1). The risk is notable because the vulnerability can be reached by unauthenticated...
by Ivan Sorkin | Feb 17, 2026 | Themes
Attack Vectors The vulnerability CVE-2025-69329 affects the Prestige WordPress theme (slug: prestige) in versions up to 1.4.1. It is rated High severity (CVSS 8.1). This issue is described as an unauthenticated PHP Object Injection, meaning an attacker does not need a...
by Ivan Sorkin | Feb 17, 2026 | Themes
Attack Vectors Prestige (WordPress theme, slug: prestige) is affected by a Medium-severity vulnerability (CVSS 6.1) tracked as CVE-2025-69330. This is a reflected cross-site scripting (XSS) issue in versions up to 1.4.1. The most common business-facing attack path is...
Recent Comments