All 2 CVE vulnerabilities found in Goza - Nonprofit Charity WordPress Theme, with AI-generated Chinese analysis, references, and POCs.
Vendor: Bearsthemes
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-10690 | Goza - Nonprofit Charity WordPress Theme <= 3.2.2 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation CWE-862 | 9.8 | Critical | 2025-09-19 |
| CVE-2025-10134 | Goza - Nonprofit Charity WordPress Theme <= 3.2.2 - Missing Authorization to Unauthenticated Arbitrary File Deletion CWE-73 | 9.1 | Critical | 2025-09-09 |
All 2 known CVE vulnerabilities affecting Goza - Nonprofit Charity WordPress Theme with full Chinese analysis, references, and POCs where available.