Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.1	CVE-2026-40758	WordPress Léonie theme <= 1.2.1 - PHP Object Injection vulnerability_CVE-2026-40758 Unauthenticated PHP Object Injection in Léonie	Elated-Themes	Léonie n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-40755	WordPress TechLink theme <= 1.3 - PHP Object Injection vulnerability_CVE-2026-40755 Unauthenticated PHP Object Injection in TechLink	Mikado-Themes	TechLink n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-40754	WordPress Roisin theme <= 1.4 - PHP Object Injection vulnerability_CVE-2026-40754 Unauthenticated PHP Object Injection in Roisin	Elated-Themes	Roisin n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-40751	WordPress Ashtanga theme <= 1.2 - PHP Object Injection vulnerability_CVE-2026-40751 Unauthenticated PHP Object Injection in Ashtanga	Mikado-Themes	Ashtanga n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-40739	WordPress LuxeDrive theme <= 1.4 - PHP Object Injection vulnerability_CVE-2026-40739 Unauthenticated PHP Object Injection in LuxeDrive	Mikado-Themes	LuxeDrive n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-40736	WordPress Laurits theme <= 1.5.1 - PHP Object Injection vulnerability_CVE-2026-40736 Unauthenticated PHP Object Injection in Laurits	Edge-Themes	Laurits n/a	Jun 16, 2026	CVE
HIGH 8	CVE-2026-39598	WordPress Academy LMS Pro plugin < 3.5.2 - Arbitrary File Upload vulnerability_CVE-2026-39598 Unrestricted Upload of File with Dangerous Type vulnerability in Kodezen LLC Academy LMS Pro allows Upload a Web Shell to a Web Server. This issue...	Kodezen LLC	Academy LMS Pro n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-39580	WordPress Micdrop theme <= 1.3.1 - PHP Object Injection vulnerability_CVE-2026-39580 Unauthenticated PHP Object Injection in Micdrop	Select-Themes	Micdrop n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-39578	WordPress Valiance theme <= 1.2 - PHP Object Injection vulnerability_CVE-2026-39578 Unauthenticated PHP Object Injection in Valiance	Elated-Themes	Valiance n/a	Jun 16, 2026	CVE
HIGH 8.1	CVE-2026-39577	WordPress Playroom theme <= 1.4.1 - PHP Object Injection vulnerability_CVE-2026-39577 Unauthenticated PHP Object Injection in Playroom	Elated-Themes	Playroom n/a	Jun 16, 2026	CVE