Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.1 CVE-2026-22325

WordPress Promo theme <= 1.3.0 - Local File Inclusion vulnerability_CVE-2026-22325

Unauthenticated Local File Inclusion in Promo

AxiomThemes Promo n/a CVE
MEDIUM 4.8 CVE-2026-12491

Vllm: vllm: image exif rotation & png trns transparency not normalized, causing mismatch between model input and expectations_CVE-2026-12491

A flaw was found in vLLM, an open-source library for large language model inference. This vulnerability arises from improper handling of image meta...

Red Hat Red Hat AI Inference Server CVE
CRITICAL 9.8 CVE-2025-69179

WordPress Support Ticket Management System plugin <= 1.9 - Privilege Escalation vulnerability_CVE-2025-69179

Unauthenticated Privilege Escalation in Support Ticket Management System

Theme passion Support Ticket Management System n/a CVE
HIGH 8.1 CVE-2025-69173

WordPress Tipsy theme <= 1.1 - Local File Inclusion vulnerability_CVE-2025-69173

Unauthenticated Local File Inclusion in Tipsy

ThemeREX Tipsy n/a CVE
HIGH 8.1 CVE-2025-69172

WordPress Resurs theme <= 1.3 - Local File Inclusion vulnerability_CVE-2025-69172

Unauthenticated Local File Inclusion in Resurs

ThemeREX Resurs n/a CVE
HIGH 8.1 CVE-2025-69171

WordPress Orpheus theme <= 1.3 - Local File Inclusion vulnerability_CVE-2025-69171

Unauthenticated Local File Inclusion in Orpheus

ThemeREX Orpheus n/a CVE
HIGH 8.1 CVE-2025-69161

WordPress Snowy theme <= 1.13 - Local File Inclusion vulnerability_CVE-2025-69161

Unauthenticated Local File Inclusion in Snowy

ThemeREX Snowy n/a CVE
HIGH 8.1 CVE-2025-69148

WordPress Quirky theme <= 1.23 - Local File Inclusion vulnerability_CVE-2025-69148

Unauthenticated Local File Inclusion in Quirky

ThemeREX Quirky n/a CVE
HIGH 8.1 CVE-2025-69145

WordPress Gat theme <= 1.16 - Local File Inclusion vulnerability_CVE-2025-69145

Unauthenticated Local File Inclusion in Gat

ThemeREX Gat n/a CVE
HIGH 8.8 CVE-2025-69138

WordPress Genemy theme <= 1.6.6 - Privilege Escalation vulnerability_CVE-2025-69138

Subscriber Privilege Escalation in Genemy

Jthemes Genemy n/a CVE