Themerex
58 CVEsCVE IDSeverityProduct / summaryPublished
CVE-2026-22331
HIGH 8.1
Autoparts — Unauthenticated Local File Inclusion in AutoParts <= 1.5.8 versions.
2026-06-17
CVE-2026-22338
HIGH 8.1
Ecoblue — Unauthenticated Local File Inclusion in EcoBlue <= 1.15 versions.
2026-06-17
CVE-2025-58952
HIGH 8.1
Neuronet — Unauthenticated Local File Inclusion in Neuronet < 1.14.0 versions.
2026-06-17
CVE-2025-58953
HIGH 8.1
Joly — Unauthenticated Local File Inclusion in Joly <= 1.22.0 versions.
2026-06-17
CVE-2025-58954
HIGH 8.1
Homeroofer — Unauthenticated Local File Inclusion in HomeRoofer <= 2.11.0 versions.
2026-06-17
CVE-2025-60205
CRITICAL 9.8
Themerex Addons — Unauthenticated PHP Object Injection in ThemeREX Addons <= 2.36.1.1 versions.
2026-06-17
CVE-2025-69106
HIGH 8.1
Imba — Unauthenticated Local File Inclusion in Imba <= 1.5.0 versions.
2026-06-17
CVE-2025-69110
HIGH 8.1
Airsupply — Unauthenticated Local File Inclusion in AirSupply <= 2.0.0 versions.
2026-06-17
CVE-2025-69111
CRITICAL 9.8
Reisen — Unauthenticated PHP Object Injection in Reisen <= 1.4.1 versions.
2026-06-17
CVE-2025-69115
HIGH 8.1
Luxmed | Medicine & Healthcare Doctor Wordpress Theme — Unauthenticated Local File Inclusion in LuxMed | Medicine & Healthcare Doctor WordPress Theme <= 1.2.2 version…
2026-06-17
CVE-2025-69117
HIGH 8.1
Ingenioso — Unauthenticated Local File Inclusion in Ingenioso <= 1.14.0 versions.
2026-06-17
CVE-2025-69120
HIGH 8.1
Dazzle — Unauthenticated Local File Inclusion in Dazzle <= 1.0.0 versions.
2026-06-17
CVE-2025-69123
HIGH 8.1
Snow Club — Unauthenticated Local File Inclusion in Snow Club <= 1.1 versions.
2026-06-17
CVE-2025-69126
HIGH 8.1
Fortius — Unauthenticated Local File Inclusion in Fortius <= 2.3.0 versions.
2026-06-17
CVE-2025-69127
CRITICAL 9.8
Plumbing — Unauthenticated PHP Object Injection in Plumbing <= 1.6 versions.
2026-06-17
CVE-2025-69144
HIGH 8.1
Preservation — Unauthenticated Local File Inclusion in Preservation <= 1.10 versions.
2026-06-17
CVE-2025-69145
HIGH 8.1
Gat — Unauthenticated Local File Inclusion in Gat <= 1.16 versions.
2026-06-17
CVE-2025-69148
HIGH 8.1
Quirky — Unauthenticated Local File Inclusion in Quirky <= 1.23 versions.
2026-06-17
CVE-2025-69157
HIGH 8.1
Gamic — Unauthenticated Local File Inclusion in Gamic <= 1.15 versions.
2026-06-17
CVE-2025-69158
HIGH 8.1
Granola — Unauthenticated Local File Inclusion in Granola <= 1.13 versions.
2026-06-17
CVE-2025-69161
HIGH 8.1
Snowy — Unauthenticated Local File Inclusion in Snowy <= 1.13 versions.
2026-06-17
CVE-2025-69164
HIGH 8.1
Skyward — Unauthenticated Local File Inclusion in Skyward <= 1.10 versions.
2026-06-17
CVE-2025-69166
HIGH 8.1
Gunslinger — Unauthenticated Local File Inclusion in Gunslinger <= 1.7 versions.
2026-06-17
CVE-2025-69170
HIGH 8.1
Eventicity — Unauthenticated Local File Inclusion in Eventicity <= 1.5 versions.
2026-06-17
CVE-2025-69171
HIGH 8.1
Orpheus — Unauthenticated Local File Inclusion in Orpheus <= 1.3 versions.
2026-06-17
CVE-2025-69172
HIGH 8.1
Resurs — Unauthenticated Local File Inclusion in Resurs <= 1.3 versions.
2026-06-17
CVE-2025-69173
HIGH 8.1
Tipsy — Unauthenticated Local File Inclusion in Tipsy <= 1.1 versions.
2026-06-17
CVE-2025-69174
HIGH 8.1
Etude — Unauthenticated Local File Inclusion in Etude <= 1.6 versions.
2026-06-17
CVE-2025-69175
HIGH 8.1
Line Agency — Unauthenticated Local File Inclusion in Line Agency <= 1.3.1 versions.
2026-06-17
CVE-2025-69105
HIGH 8.1
Modernee — Unauthenticated Local File Inclusion in Modernee <= 1.6.0 versions.
2026-06-16
CVE-2025-69107
HIGH 8.1
Rosaleen — Unauthenticated Local File Inclusion in Rosaleen <= 2.8 versions.
2026-06-16
CVE-2025-69108
CRITICAL 9.8
Hot Coffee — Unauthenticated PHP Object Injection in Hot Coffee <= 1.7 versions.
2026-06-16
CVE-2025-69109
HIGH 8.1
Raider Spirit — Unauthenticated Local File Inclusion in Raider Spirit <= 1.1.2 versions.
2026-06-16
CVE-2025-69112
HIGH 8.1
Planty — Unauthenticated Local File Inclusion in Planty <= 1.14.0 versions.
2026-06-16
CVE-2025-69113
HIGH 8.1
Nexio — Unauthenticated Local File Inclusion in Nexio <= 1.10.0 versions.
2026-06-16
CVE-2025-69114
HIGH 8.1
Maxinet — Unauthenticated Local File Inclusion in MaxiNet <= 1.2.10 versions.
2026-06-16
CVE-2025-69116
HIGH 8.1
Iona — Unauthenticated Local File Inclusion in Iona <= 1.0.8 versions.
2026-06-16
CVE-2025-69118
HIGH 8.1
Copypress — Unauthenticated Local File Inclusion in CopyPress <= 1.4.5 versions.
2026-06-16
CVE-2025-69119
HIGH 8.1
Corbesier — Unauthenticated Local File Inclusion in Corbesier <= 1.15.0 versions.
2026-06-16
CVE-2025-69121
HIGH 8.1
Deliciosa — Unauthenticated Local File Inclusion in Deliciosa <= 1.10.0 versions.
2026-06-16
CVE-2025-69122
CRITICAL 9.8
Seafood Company — Unauthenticated PHP Object Injection in SeaFood Company <= 1.4 versions.
2026-06-16
CVE-2025-69124
HIGH 8.1
Especio — Unauthenticated Local File Inclusion in Especio <= 1.0 versions.
2026-06-16
CVE-2025-69125
HIGH 8.1
Food Drop — Unauthenticated Local File Inclusion in Food Drop <= 1.3 versions.
2026-06-16
CVE-2025-69141
HIGH 8.1
Kelly Young — Unauthenticated Local File Inclusion in Kelly Young <= 1.1.0 versions.
2026-06-16
CVE-2025-69142
HIGH 8.1
Abelle — Unauthenticated Local File Inclusion in Abelle <= 1.22 versions.
2026-06-16
CVE-2025-69143
HIGH 8.1
Mission — Unauthenticated Local File Inclusion in Mission <= 1.22 versions.
2026-06-16
CVE-2025-69146
HIGH 8.1
Dom — Unauthenticated Local File Inclusion in Dom <= 1.24 versions.
2026-06-16
CVE-2025-69147
HIGH 8.1
Putter — Unauthenticated Local File Inclusion in Putter <= 1.17 versions.
2026-06-16
CVE-2025-69149
HIGH 8.1
Top Dog — Unauthenticated Local File Inclusion in Top Dog <= 1.0.5 versions.
2026-06-16
CVE-2025-69150
HIGH 8.1
Medeus — Unauthenticated Local File Inclusion in Medeus <= 1.14 versions.
2026-06-16
CVE-2025-69159
HIGH 8.1
Printo — Unauthenticated Local File Inclusion in Printo <= 1.11 versions.
2026-06-16
CVE-2025-69160
HIGH 8.1
Gita — Unauthenticated Local File Inclusion in Gita <= 1.11 versions.
2026-06-16
CVE-2025-69162
HIGH 8.1
Grecko — Unauthenticated Local File Inclusion in Grecko <= 5.17 versions.
2026-06-16
CVE-2025-69163
HIGH 8.1
Wineshop — Unauthenticated Local File Inclusion in WineShop <= 3.17 versions.
2026-06-16
CVE-2025-69165
HIGH 8.1
Choreo — Unauthenticated Local File Inclusion in Choreo <= 1.6 versions.
2026-06-16
CVE-2025-69167
HIGH 8.1
Eros — Unauthenticated Local File Inclusion in Eros <= 1.3 versions.
2026-06-16
CVE-2025-69168
HIGH 8.1
Spike — Unauthenticated Local File Inclusion in Spike <= 1.2 versions.
2026-06-16
CVE-2025-69176
HIGH 8.1
Itactics — Unauthenticated Local File Inclusion in ITactics <= 1.0 versions.
2026-06-16