All 6 CVE vulnerabilities found in Golo, with AI-generated Chinese analysis, references, and POCs.
Vendor: uxper
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-27051 | WordPress Golo theme <= 1.7.0 - Privilege Escalation vulnerability CWE-266 | 9.8 | Critical | 2026-03-25 |
| CVE-2026-23973 | WordPress Golo theme < 1.7.5 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2026-03-25 |
| CVE-2026-23974 | WordPress Golo theme < 1.7.5 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2026-01-22 |
| CVE-2026-23975 | WordPress Golo theme < 1.7.5 - Local File Inclusion vulnerability CWE-98 | 7.5 | High | 2026-01-22 |
| CVE-2025-54724 | WordPress Golo Theme <= 1.7.1 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 7.1 | High | 2025-08-28 |
| CVE-2025-54725 | WordPress Golo Theme <= 1.7.0 - Broken Authentication Vulnerability CWE-288 | 9.8 | Critical | 2025-08-28 |
All 6 known CVE vulnerabilities affecting Golo with full Chinese analysis, references, and POCs where available.