GHSA-jhxc-m7r4-x872CriticalCVSS 9.8

Unauthenticated PHP Object Injection in ThemeREX Addons <= 2.36.1.1 versions.

Published
June 17, 2026
Last Modified
June 17, 2026

🔗 CVE IDs covered (1)

📋 Description

Unauthenticated PHP Object Injection in ThemeREX Addons <= 2.36.1.1 versions.

🔗 References (3)