Skip to main content

Singlemalt

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-39576 HIGH This Week

Unauthenticated PHP Object Injection in the SingleMalt WordPress theme (versions up to and including 1.5) allows remote attackers to deserialize attacker-controlled data, which can lead to compromise of confidentiality, integrity, and availability of affected WordPress sites. The flaw is exploitable without authentication or user interaction but has high attack complexity per its CVSS vector, and no public exploit identified at time of analysis.

PHP Deserialization Singlemalt
NVD
CVSS 3.1
8.1
EPSS
0.4%
CVE-2026-39576
EPSS 0% CVSS 8.1
HIGH This Week

Unauthenticated PHP Object Injection in the SingleMalt WordPress theme (versions up to and including 1.5) allows remote attackers to deserialize attacker-controlled data, which can lead to compromise of confidentiality, integrity, and availability of affected WordPress sites. The flaw is exploitable without authentication or user interaction but has high attack complexity per its CVSS vector, and no public exploit identified at time of analysis.

PHP Deserialization Singlemalt
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy