Vulnerabilities in pebas
8 resultsCVE-2025-39489CRITICALWordPress CouponXL theme <= 4.5.0 - Privilege Escalation VulnerabilityEPSS 0.4%CVE-2025-60220CRITICALWordPress CouponXxL theme <= 3.0.0 - Privilege Escalation vulnerabilityEPSS 0.4%CVE-2025-52725CRITICALWordPress CouponXxL theme <= 3.0.0 - PHP Object Injection VulnerabilityEPSS 0.4%CVE-2026-22484CRITICALWordPress Lisfinity Core plugin <= 1.5.0 - SQL Injection vulnerabilityEPSS 0.4%CVE-2025-6038HIGHLisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme <= 1.4.0 - Authenticated (Subscriber+) Privilege EscalationEPSS 0.3%CVE-2025-52726HIGHWordPress CouponXxL Custom Post Types plugin <= 3.0 - Privilege Escalation VulnerabilityEPSS 0.2%CVE-2025-6042HIGHLisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme <= 1.4.0 - Unauthenticated Privilege Escalation to EditorEPSS 0.2%CVE-2025-58013HIGHWordPress CouponXxL Theme <= 4.5.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%