Search
Search Results (360813 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-59872 | 1 Hcltech | 1 Zie For Web | 2026-06-26 | 4.3 Medium |
| HCL ZIE for Web is affetced by an Unrestricted File Upload vulnerability, If the server is configured to execute code, then it may be possible to obtain command execution on the server by uploading a file known as a web shell, which allows you to execute arbitrary code or operating system commands. For this attack to be successful, the file needs to be uploaded inside the Webroot, and the server must be configured to execute the code | ||||
| CVE-2025-69106 | 2 Themerex, Wordpress | 2 Imba, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Imba <= 1.5.0 versions. | ||||
| CVE-2025-69111 | 2 Themerex, Wordpress | 2 Reisen, Wordpress | 2026-06-26 | 9.8 Critical |
| Unauthenticated PHP Object Injection in Reisen <= 1.4.1 versions. | ||||
| CVE-2025-69120 | 2 Themerex, Wordpress | 2 Dazzle, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Dazzle <= 1.0.0 versions. | ||||
| CVE-2025-69123 | 2 Themerex, Wordpress | 2 Snow Club, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Snow Club <= 1.1 versions. | ||||
| CVE-2025-69126 | 2 Themerex, Wordpress | 2 Fortius, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Fortius <= 2.3.0 versions. | ||||
| CVE-2025-69127 | 2 Themerex, Wordpress | 2 Plumbing, Wordpress | 2026-06-26 | 9.8 Critical |
| Unauthenticated PHP Object Injection in Plumbing <= 1.6 versions. | ||||
| CVE-2025-69157 | 2 Themerex, Wordpress | 2 Gamic, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Gamic <= 1.15 versions. | ||||
| CVE-2025-69158 | 2 Themerex, Wordpress | 2 Granola, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Granola <= 1.13 versions. | ||||
| CVE-2025-69166 | 2 Themerex, Wordpress | 2 Gunslinger, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Gunslinger <= 1.7 versions. | ||||
| CVE-2025-69174 | 2 Themerex, Wordpress | 2 Etude, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Etude <= 1.6 versions. | ||||
| CVE-2026-39523 | 2 Elated-themes, Wordpress | 2 Solene Core, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Solene Core <= 2.3.2 versions. | ||||
| CVE-2026-39556 | 2 Elated-themes, Wordpress | 2 Konsept, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated PHP Object Injection in Konsept <= 1.9 versions. | ||||
| CVE-2026-39560 | 2 Select-themes, Wordpress | 2 Hiroshi, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated PHP Object Injection in Hiroshi <= 1.5.1 versions. | ||||
| CVE-2026-39576 | 2 Elated-themes, Wordpress | 2 Singlemalt, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated PHP Object Injection in SingleMalt <= 1.5 versions. | ||||
| CVE-2026-39590 | 2 Thememove, Wordpress | 2 Atomlab, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Atomlab <= 2.4.5 versions. | ||||
| CVE-2026-40733 | 2 Mikado-themes, Wordpress | 2 Shiftup, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated PHP Object Injection in ShiftUp <= 1.3 versions. | ||||
| CVE-2026-40756 | 2 Mikado-themes, Wordpress | 2 Zoya, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated PHP Object Injection in Zoya <= 1.4 versions. | ||||
| CVE-2026-40757 | 2 Mikado-themes, Wordpress | 2 Château, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated PHP Object Injection in Château <= 1.2.1 versions. | ||||
| CVE-2026-52707 | 2 Mikado-themes, Wordpress | 2 Kastell, Wordpress | 2026-06-26 | 8.1 High |
| Unauthenticated Local File Inclusion in Kastell <= 2.0 versions. | ||||