Latest CVE Vulnerabilities

7.5 HIGH

CVE-2025-69131 — WordPress WordPress & WooCommerce Scraper Plugin, Import Data from Any Site plugin <= 1.0…

Unauthenticated Arbitrary File Download in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site <= 1.0.7 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69125 — WordPress Food Drop theme <= 1.3 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Food Drop <= 1.3 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69124 — WordPress Especio theme <= 1.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Especio <= 1.0 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

9.8 CRITICAL

CVE-2025-69122 — WordPress SeaFood Company theme <= 1.4 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in SeaFood Company <= 1.4 versions.

Remote | Injection

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69121 — WordPress Deliciosa theme <= 1.10.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Deliciosa <= 1.10.0 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69119 — WordPress Corbesier theme <= 1.15.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Corbesier <= 1.15.0 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69118 — WordPress CopyPress theme <= 1.4.5 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in CopyPress <= 1.4.5 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69116 — WordPress Iona theme <= 1.0.8 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Iona <= 1.0.8 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69114 — WordPress MaxiNet theme <= 1.2.10 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in MaxiNet <= 1.2.10 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69113 — WordPress Nexio theme <= 1.10.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Nexio <= 1.10.0 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69112 — WordPress Planty theme <= 1.14.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Planty <= 1.14.0 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69109 — WordPress Raider Spirit theme <= 1.1.2 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Raider Spirit <= 1.1.2 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

9.8 CRITICAL

CVE-2025-69108 — WordPress Hot Coffee theme <= 1.7 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Hot Coffee <= 1.7 versions.

Remote | Injection

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69107 — WordPress Rosaleen theme <= 2.8 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Rosaleen <= 2.8 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-69105 — WordPress Modernee theme <= 1.6.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Modernee <= 1.6.0 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

7.1 HIGH

CVE-2025-69104 — WordPress Qreatix theme <= 1.9.4 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting (XSS) in Qreatix <= 1.9.4 versions.

Remote | Cross-Site Scripting

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

7.5 HIGH

CVE-2025-69103 — WordPress Brikk theme <= 3.0.0 - Arbitrary Content Deletion vulnerability

Subscriber Arbitrary Content Deletion in Brikk <= 3.0.0 versions.

Remote | Authorization

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-60085 — WordPress Learnify theme <= 1.15.0 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Learnify <= 1.15.0 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

8.1 HIGH

CVE-2025-58924 — WordPress Geya theme <= 1.15 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Geya <= 1.15 versions.

Remote | Path Traversal

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

9.8 CRITICAL

CVE-2026-54194 — WordPress Fusion Builder plugin <= 3.15.4 - PHP Object Injection vulnerability

Contributor PHP Object Injection in Fusion Builder <= 3.15.4 versions.

fusion_builder | Remote | Injection

Jun 16, 2026 Jun 16, 2026

Jun 16, 2026

Browse by Apps

Latest CVE Feed

Cookie Preferences