All 3 CVE vulnerabilities found in CozyStay, with AI-generated Chinese analysis, references, and POCs.
Vendor: LoftOcean
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-67988 | WordPress CozyStay theme < 1.9.1 - Local File Inclusion vulnerability CWE-98 | 9.1AI | CriticalAI | 2026-02-20 |
| CVE-2025-49508 | WordPress CozyStay theme < 1.7.1 - Local File Inclusion vulnerability CWE-98 | 8.1 | High | 2025-06-17 |
| CVE-2025-49507 | WordPress CozyStay theme < 1.7.1 - PHP Object Injection vulnerability CWE-502 | 9.8 | Critical | 2025-06-10 |
All 3 known CVE vulnerabilities affecting CozyStay with full Chinese analysis, references, and POCs where available.