Dismissed
Permalink
CVE-2025-60212
8.8 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
by @LeSuisse Activity log
- Created automatic suggestion
- @LeSuisse removed package ocamlPackages.reactivedata
- @LeSuisse dismissed
WordPress VEDA Theme <= 4.2 - PHP Object Injection Vulnerability
Deserialization of Untrusted Data vulnerability in designthemes VEDA veda allows Object Injection.This issue affects VEDA: from n/a through <= 4.2.
References
- https://vdp.patchstack.com/database/Wordpress/Theme/veda/vulnerability/wordpres… vdb-entry
- https://vdp.patchstack.com/database/Wordpress/Theme/veda/vulnerability/wordpres… vdb-entry
- https://vdp.patchstack.com/database/Wordpress/Theme/veda/vulnerability/wordpres… vdb-entry
- https://patchstack.com/database/Wordpress/Theme/veda/vulnerability/wordpress-ve… vdb-entry
Affected products
veda
- =<<= 4.2