Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Elated-Themes | Fidalgo | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Elated-themes | Fidalgo | 100% |
|
||||||||
| Wordpress | Wordpress | 80% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Vendor Solution
Update the WordPress Fidalgo Theme to the latest available version (at least 1.3).
Tracking
Sign in to view the affected projects.
No advisories yet.
Fri, 26 Jun 2026 10:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Elated-themes
Elated-themes fidalgo Wordpress Wordpress wordpress |
|
| Vendors & Products |
Elated-themes
Elated-themes fidalgo Wordpress Wordpress wordpress |
Wed, 17 Jun 2026 12:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 16 Jun 2026 22:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated PHP Object Injection in Fidalgo <= 1.2.2 versions. | |
| Title | WordPress Fidalgo theme <= 1.2.2 - PHP Object Injection vulnerability | |
| Weaknesses | CWE-502 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-17T10:40:54.376Z
Reserved: 2026-04-07T10:48:26.892Z
Link: CVE-2026-39554
Vulnrichment
Updated: 2026-06-17T10:40:47.110Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-26T09:44:11Z