Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.1 CVE-2025-69152

WordPress Artale | Wedding Photography WordPress theme <= 2.2.2 - Cross Site Scripting (XSS) vulnerability_CVE-2025-69152

Unauthenticated Cross Site Scripting (XSS) in Artale | Wedding Photography WordPress

ThemeGoods Artale | Wedding Photography WordPress n/a CVE
HIGH 7.5 CVE-2025-69134

WordPress OpenAI Chatbot for WordPress – Helper plugin <= 1.1.4 - Arbitrary Content Deletion vulnerability_CVE-2025-69134

Unauthenticated Arbitrary Content Deletion in OpenAI Chatbot for WordPress – Helper

Merkulove OpenAI Chatbot for WordPress – Helper n/a CVE
HIGH 7.5 CVE-2025-69133

WordPress Tourmaster plugin <= 5.4.5 - Local File Inclusion vulnerability_CVE-2025-69133

Subscriber Local File Inclusion in Tourmaster

GoodLayers Tourmaster n/a CVE
MEDIUM 6.5 CVE-2025-69132

WordPress Corpkit theme <= 1.0.5 - Sensitive Data Exposure vulnerability_CVE-2025-69132

Subscriber Sensitive Data Exposure in Corpkit

Zozothemes Corpkit n/a CVE
HIGH 8.5 CVE-2025-69094

WordPress Unicamp theme <= 2.2.2 - SQL Injection vulnerability_CVE-2025-69094

Subscriber SQL Injection in Unicamp

ThemeMove Unicamp n/a CVE
MEDIUM 5.3 CVE-2025-66076

WordPress Woostify Sites Library plugin <= 1.6.2 - Broken Access Control vulnerability_CVE-2025-66076

Unauthenticated Broken Access Control in Woostify Sites Library

dylan ngo Woostify Sites Library n/a CVE
HIGH 8.1 CVE-2025-58902

WordPress Lighthouse theme <= 1.2.12 - Local File Inclusion vulnerability_CVE-2025-58902

Unauthenticated Local File Inclusion in Lighthouse

AncoraThemes Lighthouse n/a CVE
NONE 5F8E44F7-5CCC-

Privilege-Escalation-Writeups_5F8E44F7-5CCC-5631-80C2-269F3AAEA6E7

Privilege Escalation A curated collection of Linux and Windows privilege escalation techniques, methodologies, and practical write-ups for penetrat...

N/A N/A GITHUBEXPLOIT
NONE SECURELIST:EFBE...

Missed incidents, persistent threats, and response gaps: Insights from compromise assessment projects_SECURELIST:EFBEB214C8EF3CBBF2A7335775C7EDB0

![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/07/02075840/SL-compromise-assessment-featured-990x400.png) The followin...

N/A N/A SECURELIST
CRITICAL 9.8 2CD27041-974C-

Exploit for Eval Injection in Langflow_2CD27041-974C-51E2-A9B6-B17AEB644C15

CVE-2026-33017 - Langflow Unauthenticated RCE ⚠️ DISCLAIMER: This repository is for authorized security testing and educational purposes only. Use ...

N/A N/A GITHUBEXPLOIT