GHSA-jg98-c5j8-6598 — Vulnetix

GHSA-jg98-c5j8-6598 PUBLISHED

Exploit Intelligence

Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc-repo)
Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc-repo)
Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc)
Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc)
Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc)
Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc)
Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc)
Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation (github-poc)
CVE‑2025‑5394 WP Alone ≤ 7.8.3 (github-poc)
CVE‑2025‑5394 WP Alone ≤ 7.8.3 (github-poc)

…and 4 more exploits

Timeline

CVE Published
Apr 10, 2026 Security Advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›