ByteOS Network

CVE-2025-8143

Assigner-Wordfence

View Details

Assigner-Wordfence

CVSS Score-6.4||MEDIUM

EPSS-0.03% / 7.38%

||

7 Day CHG~0.00%

Published-16 Aug, 2025 | 11:11

Updated-18 Aug, 2025 | 20:16

Soledad <= 8.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'pcsml_smartlists_h'

The Soledad theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘pcsml_smartlists_h’ parameter in all versions up to, and including, 8.6.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Vendor-pencidesign

Product-Soledad

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2025-8105

Assigner-Wordfence

View Details

Assigner-Wordfence

CVSS Score-7.3||HIGH

EPSS-0.19% / 41.15%

||

7 Day CHG+0.05%

Published-16 Aug, 2025 | 11:11

Updated-18 Aug, 2025 | 20:16

Soledad <= 8.6.7 - Unauthenticated Arbitrary Shortcode Execution

The The Soledad theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.6.7. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

Vendor-pencidesign

Product-Soledad

CWE ID-CWE-94

Improper Control of Generation of Code ('Code Injection')

CVE-2025-8142

Assigner-Wordfence

View Details

Assigner-Wordfence

CVSS Score-8.8||HIGH

EPSS-0.08% / 24.96%

||

7 Day CHG~0.00%

Published-16 Aug, 2025 | 11:11

Updated-18 Aug, 2025 | 20:16

Soledad <= 8.6.7 - Authenticated (Contributor+) Local File Inclusion via 'header_layout'

The Soledad theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.6.7 via the 'header_layout' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary .php files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where .php file types can be uploaded and included.

Vendor-pencidesign

Product-Soledad

CWE ID-CWE-98

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

CVE-2024-11289

Assigner-Wordfence

View Details

Assigner-Wordfence

CVSS Score-8.1||HIGH

EPSS-0.56% / 67.32%

||

7 Day CHG+0.11%

Published-06 Dec, 2024 | 09:22

Updated-06 Dec, 2024 | 17:10

Soledad <= 8.5.9 - Unauthenticated Limited Local File Inclusion

The Soledad theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.5.9 via several functions like penci_archive_more_post_ajax_func, penci_more_post_ajax_func, and penci_more_featured_post_ajax_func. This makes it possible for unauthenticated attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where PHP files can be uploaded and included. The exploitability of this is limited to Windows.

Vendor-pencidesign pencidesign

Product-Soledad soledad

CWE ID-CWE-98

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

CVE-2024-31369

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-5.4||MEDIUM

EPSS-0.16% / 37.72%

||

7 Day CHG~0.00%