Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Mikado-Themes | Mikado Core | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Mikado-themes | Mikado Core | 100% |
|
||||||||||||
| Wordpress | Wordpress | 80% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Vendor Solution
Update the WordPress Mikado Core Plugin to the latest available version (at least 1.7.2).
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 17 Jun 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 17 Jun 2026 13:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Mikado-themes
Mikado-themes mikado Core Wordpress Wordpress wordpress |
|
| Vendors & Products |
Mikado-themes
Mikado-themes mikado Core Wordpress Wordpress wordpress |
Wed, 17 Jun 2026 11:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Local File Inclusion in Mikado Core <= 1.6 versions. | |
| Title | WordPress Mikado Core plugin <= 1.6 - Local File Inclusion vulnerability | |
| Weaknesses | CWE-98 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-17T12:36:44.694Z
Reserved: 2026-04-07T10:48:15.448Z
Link: CVE-2026-39537
Vulnrichment
Updated: 2026-06-17T12:36:35.924Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-17T13:00:08Z
-
CWE-98
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')