Curly — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in Curly, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Paused
CVE-2026-22393	WordPress Curly theme <= 3.3 - Insecure Direct Object References (IDOR) vulnerability CWE-639	5.4	Medium	2026-01-22
CVE-2025-67936	WordPress Curly theme < 3.3 - Local File Inclusion vulnerability CWE-98	9.1	-	2026-01-08

All 2 known CVE vulnerabilities affecting Curly with full Chinese analysis, references, and POCs where available.