Soledad – Multipurpose, Newspaper, Blog & Woocommerce Wordpress Theme

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:pencidesign:soledad_–_multipurpose,_newspaper,_blog_&_woocommerce_wordpress_theme:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorPencidesign (014d8474-b95d-55a1-bf73-aaaad687f842)
ProductSoledad – Multipurpose, Newspaper, Blog & Woocommerce Wordpress Theme (f345cf29-22e3-5bdd-a869-5f0367bb005e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-49827 vulnerable 2026-06-03 14:53:26.521374 WordPress Soledad Theme <= 8.4.1 is vulnerable to Cross Site Scripting (XSS)
HIGH (7.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme allows Reflected XSS.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1.
Published: 2023-12-14T14:32:12.339Z
Updated: 2026-04-28T16:08:58.014Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-49826 vulnerable 2026-06-03 14:53:26.520837 WordPress Soledad Theme <= 8.4.1 is vulnerable to PHP Object Injection
HIGH (8.1)
Deserialization of Untrusted Data vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1.
Published: 2023-12-21T12:34:51.957Z
Updated: 2026-04-28T16:08:58.130Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-49825 vulnerable 2026-06-03 14:53:26.519115 WordPress Soledad Theme <= 8.4.1 is vulnerable to SQL Injection
HIGH (8.5)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1.
Published: 2023-12-20T15:38:27.276Z
Updated: 2026-04-28T16:08:57.968Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.