Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2
Critical0
High1
Medium1
Reset
Showing 1-2 of 2 records
Threat Entry Updated 2025-09-08

CVE-2025-7366 - Multi Vendor Marketplace Wordpress Theme

The The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 19.9.7. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

THEME Multi Vendor Marketplace Wordpress Theme

CVE-2025-7366

HIGH CVSS 7.3 2025-09-06
Open Full Technical Breakdown
Threat Entry Updated 2025-09-08

CVE-2025-7368 - Multi Vendor Marketplace Wordpress Theme

The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme theme for WordPress is vulnerable to Information Exposure in all versions up to, and including, 19.9.7 via the 'ajax_action_re_getfullcontent' function due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from password protected posts that they should not have access to.

THEME Multi Vendor Marketplace Wordpress Theme

CVE-2025-7368

MEDIUM CVSS 5.3 2025-09-06
Open Full Technical Breakdown
Scroll to top