GCVE - cpe:2.3:a:mikado-themes:pawfriends_-_pet_shop_and_veterinary_wordpress

Approved changes feed: RSS · Atom

cpe:2.3:a:mikado-themes:pawfriends_-_pet_shop_and_veterinary_wordpress_theme:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Mikado Themes (`c88f4c78-7d0e-58dc-bc64-066240193f55`)
Product	Pawfriends Pet Shop And Veterinary Wordpress Theme (`8cdd113f-3961-5819-ab0c-fbe39fb05eac`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-22383`	vulnerable	2026-06-03 15:15:53.208573	WordPress PawFriends - Pet Shop and Veterinary WordPress theme theme <= 1.3 - Insecure Direct Object References (IDOR) vulnerability HIGH (7.5) Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme pawfriends allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PawFriends - Pet Shop and Veterinary WordPress Theme: from n/a through <= 1.3. Published: 2026-02-20T15:47:06.889Z Updated: 2026-04-28T16:53:30.297Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Theme/pawfriends/vulnerability/wordpress-pawfriends-pet-shop-and-veterinary-wordpress-theme-theme-1-3-insecure-direct-object-references-idor-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-22382`	vulnerable	2026-06-03 15:15:53.208259	WordPress PawFriends - Pet Shop and Veterinary WordPress Theme theme <= 1.3 - Cross Site Request Forgery (CSRF) vulnerability MEDIUM (5.4) Cross-Site Request Forgery (CSRF) vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme pawfriends allows Cross Site Request Forgery.This issue affects PawFriends - Pet Shop and Veterinary WordPress Theme: from n/a through <= 1.3. Published: 2026-01-22T16:52:35.559Z Updated: 2026-04-28T16:53:22.017Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Theme/pawfriends/vulnerability/wordpress-pawfriends-pet-shop-and-veterinary-wordpress-theme-theme-1-3-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-22381`	vulnerable	2026-06-03 15:15:53.207866	WordPress PawFriends - Pet Shop and Veterinary WordPress Theme theme <= 1.3 - Local File Inclusion vulnerability HIGH (8.1) Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme pawfriends allows PHP Local File Inclusion.This issue affects PawFriends - Pet Shop and Veterinary WordPress Theme: from n/a through <= 1.3. Published: 2026-02-20T15:47:06.708Z Updated: 2026-04-28T16:53:13.228Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Theme/pawfriends/vulnerability/wordpress-pawfriends-pet-shop-and-veterinary-wordpress-theme-theme-1-3-local-file-inclusion-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Pawfriends Pet Shop And Veterinary Wordpress Theme

PURL mappings

Vulnerability references

Contribute