Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Edge-Themes | Behold | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Edge-themes | Behold | 100% |
|
||||||||
| Wordpress | Wordpress | 80% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Vendor Solution
Update the WordPress Behold Theme to the latest available version (at least 1.6).
Tracking
Sign in to view the affected projects.
No advisories yet.
Sun, 21 Jun 2026 09:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Edge-themes
Edge-themes behold Wordpress Wordpress wordpress |
|
| Vendors & Products |
Edge-themes
Edge-themes behold Wordpress Wordpress wordpress |
Wed, 17 Jun 2026 12:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 16 Jun 2026 22:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated PHP Object Injection in Behold <= 1.5 versions. | |
| Title | WordPress Behold theme <= 1.5 - PHP Object Injection vulnerability | |
| Weaknesses | CWE-502 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-17T10:37:33.148Z
Reserved: 2026-04-15T09:20:32.456Z
Link: CVE-2026-40760
Vulnrichment
Updated: 2026-06-17T10:37:27.966Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-20T23:05:24Z