Skip to main content

Manufaktur Solutions CVE-2026-40752

HIGH
Deserialization of Untrusted Data (CWE-502)
2026-06-17 Patchstack
PHP Deserialization Manufaktur Solutions
8.1
CVSS 3.1 · Vendor: Patchstack
Share

Severity by source

Vendor (Patchstack) PRIMARY
8.1 HIGH
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
vuln.today AI
8.1 HIGH

Network-reachable WordPress theme endpoint with no auth (AV:N/PR:N/UI:N); AC:H because impact depends on a usable gadget chain; full C/I/A:H if chain achieves RCE.

3.1 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
4.0 AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (Patchstack).

CVSS VectorVendor: Patchstack

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
Analysis Generated
Jun 17, 2026 - 14:31 vuln.today

DescriptionCVE.org

Unauthenticated PHP Object Injection in Manufaktur Solutions <= 1.1.1 versions.

AnalysisAI

Unauthenticated PHP object injection in the Manufaktur Solutions WordPress theme (versions 1.1.1 and earlier) allows remote attackers to deserialize attacker-controlled data, potentially leading to arbitrary code execution, data tampering, or denial of service when a suitable PHP gadget chain is present. The CVSS 3.1 score of 8.1 reflects high impact across confidentiality, integrity, and availability, tempered by AC:H due to dependency on exploitable gadget chains in the WordPress runtime. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify WordPress site using Manufaktur Solutions theme
Delivery
Craft serialized PHP object payload with gadget chain
Exploit
Send HTTP request to vulnerable theme endpoint
Execution
Trigger unsafe unserialize() call
Persist
Execute gadget chain to write webshell or run code
Impact
Establish persistent access and exfiltrate data
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires the Manufaktur Solutions theme version 1.1.1 or earlier to be active on a WordPress site reachable over HTTP/HTTPS, with no authentication required per CVSS PR:N. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 base score of 8.1 (AV:N/AC:H/PR:N/UI:N/C:H/I:H/A:H) indicates a network-reachable, unauthenticated vulnerability with high impact on all three security pillars, but AC:H signals that exploitation is not trivial - typically because a usable gadget chain must be present in the victim's WordPress stack. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An unauthenticated remote attacker submits an HTTP request to a vulnerable Manufaktur Solutions theme endpoint containing a crafted serialized PHP payload that, upon deserialization by the theme, instantiates a gadget chain present in WordPress core or an installed plugin to write a webshell, execute arbitrary PHP, or exfiltrate database contents. Because no public exploit is documented at time of analysis, real-world abuse would require an attacker to develop or repurpose an existing gadget chain - a non-trivial but well-precedented step in WordPress ecosystem attacks.
Remediation Patch status is ambiguous from the input data - the description bounds the issue at versions 1.1.1 and earlier, implying a fixed release exists, but no exact patched version number is independently confirmed in the provided references, so consult the Patchstack advisory (https://patchstack.com/database/wordpress/theme/manufaktursolutions/vulnerability/wordpress-manufaktur-solutions-theme-1-1-1-php-object-injection-vulnerability) and the Select Themes vendor channels for the exact fixed version and upgrade to it immediately. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Audit all WordPress installations to identify deployments using Manufaktur Solutions theme and document business criticality of each. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-55692 HIGH POC
7.5 Jun 19

Stored cross-site scripting in the StarCitizenWiki EmbedVideo MediaWiki extension (versions <= 4.0.0) allows any user wi
CVE-2026-9815 MEDIUM POC
6.5 Jun 18

Unrestricted PHP file upload in the MagicForm WordPress plugin (through version 0.1.3) enables unauthenticated remote co
CVE-2026-48908 CRITICAL
10.0 Jun 20

Remote unauthenticated arbitrary file upload in JoomShaper SP Page Builder extension for Joomla (versions 1.0.0 through

CVE-2026-48939 CRITICAL
10.0 Jun 20

Arbitrary PHP file upload in the iCagenda extension for Joomla enables remote unauthenticated attackers to abuse the eve
CVE-2025-69108 CRITICAL
9.8 Jun 16

Unauthenticated PHP Object Injection in the ThemeREX Hot Coffee WordPress theme (versions ≤ 1.7) allows remote attackers

Share

CVE-2026-40752 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy