Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 33 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-59589 WordPress Soledad Theme <= 8.6.8 - Cross Site Scripting (XSS) Vulnerability PenciDesignSoledad Medium 6.5 2025-09-22 18:25:48 Deep Dive
CVE-2025-8143 Soledad <= 8.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'pcsml_smartlists_h' pencidesignSoledad Medium 6.4 2025-08-16 11:11:25 Deep Dive
CVE-2025-8105 Soledad <= 8.6.7 - Unauthenticated Arbitrary Shortcode Execution pencidesignSoledad High 7.3 2025-08-16 11:11:24 Deep Dive
CVE-2025-8142 Soledad <= 8.6.7 - Authenticated (Contributor+) Local File Inclusion via 'header_layout' pencidesignSoledad High 8.8 2025-08-16 11:11:23 Deep Dive
CVE-2024-11289 Soledad <= 8.5.9 - Unauthenticated Limited Local File Inclusion pencidesignSoledad High 8.1 2024-12-06 09:23:00 Deep Dive
CVE-2024-3551 Penci Soledad Data Migrator <= 1.3.0 - Unauthenticated Local File Inclusion pencidesignPenci Soledad Data Migrator Critical 9.8 2024-05-17 02:03:10 Deep Dive
CVE-2024-31369 WordPress Soledad theme <= 8.4.2 - Cross Site Request Forgery (CSRF) vulnerability PenciDesignSoledad Medium 5.4 2024-04-09 08:28:01 Deep Dive
CVE-2024-31368 WordPress Soledad theme <= 8.4.2 - Unauthenticated Broken Access Control vulnerability PenciDesignSoledad Medium 6.5 2024-04-09 08:21:07 Deep Dive
CVE-2024-31367 WordPress Soledad theme <= 8.4.2 - Authenticated Broken Access Control vulnerability PenciDesignSoledad High 7.1 2024-04-09 08:15:53 Deep Dive
CVE-2023-49826 WordPress Soledad Theme <= 8.4.1 is vulnerable to PHP Object Injection PenciDesignSoledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme High 8.1 2023-12-21 12:34:52 Deep Dive
CVE-2023-49825 WordPress Soledad Theme <= 8.4.1 is vulnerable to SQL Injection PenciDesignSoledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme High 8.5 2023-12-20 15:38:27 Deep Dive
CVE-2023-49827 WordPress Soledad Theme <= 8.4.1 is vulnerable to Cross Site Scripting (XSS) PenciDesignSoledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme High 7.1 2023-12-14 14:32:12 Deep Dive
CVE-2022-41788 WordPress Soledad premium theme <= 8.2.5 - Auth. Cross-Site Scripting (XSS) vulnerability PenciDesignSoledad (WordPress theme) Medium 5.4 2022-11-18 22:09:27 Deep Dive