All 5 CVE vulnerabilities found in KALLYAS, with AI-generated Chinese analysis, references, and POCs.
Vendor: hogash
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-63061 | WordPress KALLYAS theme < 4.25.0 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.1AI | MediumAI | 2025-12-09 |
| CVE-2025-63060 | WordPress KALLYAS theme < 4.25.0 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-12-09 |
| CVE-2025-62018 | WordPress Kallyas theme <= 4.22.0 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2025-11-06 |
| CVE-2025-62016 | WordPress Kallyas theme <= 4.22.0 - Arbitrary File Upload vulnerability CWE-434 | 8.8 | - | 2025-11-06 |
| CVE-2025-62017 | WordPress Kallyas theme <= 4.22.0 - Broken Access Control vulnerability CWE-862 | 5.4 | Medium | 2025-11-06 |
All 5 known CVE vulnerabilities affecting KALLYAS with full Chinese analysis, references, and POCs where available.